# Exploit Title : Wecom SQL Injection vulnerability # Date : 2020-10-16 # Exploit Author : Arash Mousavi # Vendor Homepage : www.wecom.gr # Google Dork : "web site by WeC.O.M." # Category : webapps # Tested on : Windows 10 ,Firefox Proof of Concept: search Google Dork : "web site by WeC.O.M." Demo : http://tzortzopoulos.gr/bikeshop2/index.php?cat0=166'[sql Injection] http://www.valsamon.com/index.php?id=53&subid=2105'[sql Injection] http://www.grafotipos.gr/index.php?contentid=7%27'[sql Injection] ********************************************************* # Discovered by : Arash Mousavi # Email : [email protected] *********************************************************
Thanks for you comment!
Your message is in quarantine 48 hours.
文章来源: https://cxsecurity.com/issue/WLB-2020100097
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh