Cline Communications Blind SQL Injection

2018.08.22
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89

---------------------------------------------------------------- * Exploit Title: Cline Communications Blind SQL Injection ---------------------------------------------------------------- * Exploit Author: General Ghasemi * Telegram @GeneralGhasemi * Tested on: Windows 10 * tiredandalone855@gmail.com ---------------------------------------------------------------- * search google Dork : "This site powered by Cline Communications" * Vendor site: http://www.ballettri-cities.com * Demo: Blind Sqli http://www.ballettri-cities.com/photo_enlarged.php?Photo_ID=256 ----------------------------------------------------------------


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top