ООО "СУ-3" - компания sql injection

2020.12.03

OmideMehraban (IR)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: intext:"ООО "СУ-3" - компания"

* Exploit Title: ООО "СУ-3" - компания sql injection
* Google Dork: intext:"ООО "СУ-3" - компания"
* Date: 2020.12.02
* Exploit Author: OmideMehraban
* Vendor Homepage: http://su-3.ru/
* Software Link: http://su-3.ru/
* Category : webapps
* Version: 1.0
* Tested on: windows 7 , firefox
********************************************************* 
* Demo: 

* http://su-3.ru/projects-detail.php?id=8

* Add Single quotation ' to the last link 


### Special Thanks:

* The silence of terror


********************************************************* 
* Discovered By OmideMehraban
* Instagram: @omidemehraban
* Telegram: @omiid
********************************************************* 

See this note in RAW Version

Vote for this issue:

100%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

ООО "СУ-3" - компания sql injection

Dork: intext:"ООО "СУ-3" - компания"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.