eStore CMS 2.0 SQL Injection
2024-7-22 19:41:26 Author: packetstormsecurity.com(查看原文) 阅读量:2 收藏 
====================================================================================================================================
| # Title     : eStore CMS v2.0 Sql injection Vulnerability                                                                        |
| # Author    : indoushka                                                                                                          |
| # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 125.0.1 (64 bits)                                                   |
| # Vendor    : http://www.2iraq.com/                                                                                              |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] use payload : "CMS.php?CMS_P=" or "News_Details.php?ID="<===== inject here
[+] https://www/127.0.0.1/uruk.edu.iq/News_Details.php?ID=467
Greetings to :=================================================================
jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |
===============================================================================

文章来源: https://packetstormsecurity.com/files/179638/estorecms20-sql.txt
如有侵权请联系:admin#unsafe.sh