Powered by BOOMER SQL injection

2020.07.20

Avanter (IR)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:php?id= intext:"Powered by BOOMER"

#Exploit Title : Powered by BOOMER SQL injection
#Date : 2020-7-19
#Google Dork : inurl:php?id= intext:"Powered by BOOMER"
#Exploit Author : ITH Team ("Avanter,#DC,Mani_Virus,Sensy_Virus,Lynis,Invisable")
#Tested On : Linux/Windows
#CVEs : N/A

.:: PoC ::.

Step 1 : Find Your Target With Google Dork
Step 2 : Test Targets 
Step 3 : And Injection And Enjoy  :) 

.:: Discovered by ::.

Avanter And ITH Team :)


.:: Example ::.

https://www.fluidinova.com/main.php?id=61'

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Powered by BOOMER SQL injection

Dork: inurl:php?id= intext:"Powered by BOOMER"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.