MrBlog PHP Script Multiple Vulnerabilities

2019.10.27

z3r0fy (TR)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

[+] Mr Blog PHP Script Multiple Vulnerabilities
[+] Author : z3r0fy
[+] Twitter.com/z3r0fy

# Download Pages : 

[+] https://wmaraci.com/forum/scriptler/kisisel-mr-blog-scripti-ucretsiz-indir-500655.html  
[+] https://scriptadresim.blogspot.com/2017/05/mr-blog-mobil-uyumlu-responsive-tasarm.html
[+] https://donanimplus.com/phpscript/kisisel-mr-blog-scripti-ucretsiz-indir/


# Vulnerabilities 

[+] Vulnerability 1 - SQL Injection 

[+] Vulnerability:  http://vulnerabletarget.com/foot.php?kat=[SQL]

*********************************************************

[+] Vulnerability 2 - Cross-Site Scripting

[+] VUlnerable : http://vulnerabletarget.com/sayfa-duzenle.php?duzenle=[XSS Payload]

See this note in RAW Version

Vote for this issue:

100%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

MrBlog PHP Script Multiple Vulnerabilities

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.