Отправить #184: Everywhere – SQL Injection vulnerabilityИнформация

НазваниеEverywhere – SQL Injection vulnerability
Описание#Exploit Title: Everywhere – SQL Injection vulnerability #Date: 2020/07/02 #Exploit Author: Mostafa Farzaneh #Vendor Homepage: www.s2-everywhere.com #Google Dork: "Design by Everywhere" #Category: webapps #Tested On: windows 10, Firefox #Software Link: s2-everywhere.com Proof of Concept: 1-Search google Dork: "Design by Everywhere" Demo : http://www.acinverter.com.tw/product.php?uid=32&id=36[Sql Injection vulnerability] Demo : http://www.maxcomm.com.tw/news_detail.php?id=965dc505-3d6f-aa0a-dbf8-0e6acddd5bc6[Sql Injection vulnerability] ********************************************************* #Discovered by: Mostafa Farzaneh from PywebSecurity Team #Telegram: @pyweb_security *********************************************************
Источник⚠️ www.s2-everywhere.com
Пользователь
 pyweb-security (UID 11883)
Представление14.08.2020 16:18 (6 лет назад)
Модерация17.08.2020 08:06 (3 days later)
Статуспринято
Запись VulDB159954 [Everywhere CMS ИД SQL-инъекция]
Баллы17

ПредыдущийОбзорДалее

Do you know our Splunk app?

Download it now for free!