Impression Technologies LLC SQL Injection

2018.08.20

Mehdi Razmjoo (IR)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

# Exploit Title:  SQL Injection in “ Impression Technologies LLC “
#-----------------------------------------------------------------------------------------
# Exploit Author:  Mehdi Razmjoo ( razmjumehdi@gmail.com )
#-----------------------------------------------------------------------------------------
# Date: 2018.08.19
#-----------------------------------------------------------------------------------------
# Vendor Homepage:  http://www.imprtech.com
#-----------------------------------------------------------------------------------------
# Category: Web Application
#-----------------------------------------------------------------------------------------
# CWE-89
#-----------------------------------------------------------------------------------------
# Vulnerability Path:   http://Server/gallery.php?id=[SQLi]
#-----------------------------------------------------------------------------------------
#Tested On:  Firefox - Safari
#-----------------------------------------------------------------------------------------
# 

http://www.thecryers.com/gallery.php?id=9

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

Impression Technologies LLC SQL Injection

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Impression Technologies LLC SQL Injection

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.