Home / os / wince

Shengtuo Information Technology website management system Sql Injection Vulnerability

Posted on 30 November -0001

<HTML><HEAD><TITLE>Shengtuo Information Technology website management system Sql Injection Vulnerability</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>|*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||* ||*||*||*||*| |-------------------In The Name Of God------------------------| |[+] Exploit Title : Shengtuo Information Technology website management system Sql Injection Vulnerability |[+] Exploit Author : Ashiyane Digital Security Team |[+] Vendor Homepage : http://www.stuo.net |[+] Google Dork : " inurl:page.php?act=news&id=&idd=7 & intext:Warning: mysql_num_rows" |[+] Tested on : Windows 10 ~~> Mozilla Firefox |[+] Contact: shahroukh06@gmail.com |[+] Date : 1/25/2017 |[+]======================================| |[+] Proof: |[+] http://www.ahcht.cn/page.php?act=news&id=&idd=7 [SQLI] |[+] http://www.stuo.net/page.php?act=news&id=&idd=7 [SQLI] |[+] http://www.wbwhw.com/page.php?act=news&id=&idd=7 [SQLI] |[+] http://www.ahjjw.cn/page.php?act=news&id=&idd=7 [SQLI] |[+] http://www.hbygjd.cn/page.php?act=news&id=&idd=7 [SQLI] |[+] http://www.ylscgyg.com/page.php?act=news&id=&idd=7 [SQLI] |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||* ||*||*||*||*| |[+] Discovered By : sir shahroukh |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||* ||*||*||*||*|</BODY></HTML>

 

TOP