Powered by CORPORATE IT LIMITED SQL Injection Vulnerability

Inj3ct0r

??? ?????

تاریخ عضویت: Oct 2018

ارسالات: 34
#1

Powered by CORPORATE IT LIMITED SQL Injection Vulnerability

11-09-2018, 10:21 PM

کد PHP:

|[+] Exploit Title:Powered by CORPORATE IT LIMITED SQL Injection Vulnerability |[+] Exploit Author: RedNofozi |[+] Date: 06/11/2018 |[+] OUR SITE : https://anonysec.org/ |[+] Tested on: : Windows 10 , parrot os |[+] Vendor Homepage: http://www.bpc.gov.bd |[+] dork: intext:Powered by CORPORATE IT LIMITED inurl:.php?ID= |[+] MY page https://cxsecurity.com/author/Inj3ct0r |-----------------------------------------------------------------------------------| |==================================================================================== |-----------------------------------------------------------------------------------| |[+]{INFO} |[+] RHG hackers iran team |[+] Credits : Anonysec hackers iran team |[+] Vulnerability Type :SQL Injection Vulnerability |[+] Severity Level :Med. |[+] Exploit :info -------------->SQL Injection Vulnerability |-----------------------------------------------------------------------------------| |==================================================================================== |-----------------------------------------------------------------------------------| |[+]{DORK} |[+] intext:Powered by CORPORATE IT LIMITED inurl:.php?ID= |-----------------------------------------------------------------------------------| |==================================================================================== # {DEMO} # 01: http://www.bpc.gov.bd/contactus.php?id=13-------------------------> http://www.zone-h.org/mirror/id/31722197 # 02: http://www.ilslbd.com/content.php?Id=4 # 03: # 04: |==================================================================================== |[+] Discovered by :RedNofozi |Red hat hackers |[+] Thanks To: ReZa CLONER , Moeein Seven. Rednofozi.Inj3ct0r |[+]>>> https://t.me/RHGInj3ct0r |====================================================================================

http://www.exploit4arab.org/exploits/2219

آخرین ویرایش توسط Inj3ct0r; در تاریخ/ساعت 11-09-2018, 10:24 PM.
برچسب ها: هیچکدام
Inj3ct0r

??? ?????

تاریخ عضویت: Oct 2018

ارسالات: 34
#2

11-09-2018, 10:27 PM

سلام این اسیب پذیری مثل بقیه اسیب پذیری ها از باگ sql هستش و دسرسی گرفتن ازش راحت هستش و سایت های دولتی خارجی رو مورد حمله قرار میده
و از یه سرویس معروف هستش که این باگ رو دارن ما یه سایت رو مورد نفوذ قرار دادیم لینک اثابتش هم موجود هست و کار با این باگ سخت هستش در کل کار هر کسی نیست از این باگ دسرسی بگیره
کامنت

اطلاعیه

Powered by CORPORATE IT LIMITED SQL Injection Vulnerability

Powered by CORPORATE IT LIMITED SQL Injection Vulnerability

کامنت