Submit #184: Everywhere – SQL Injection vulnerabilityinfo

TitleEverywhere – SQL Injection vulnerability
Description#Exploit Title: Everywhere – SQL Injection vulnerability #Date: 2020/07/02 #Exploit Author: Mostafa Farzaneh #Vendor Homepage: www.s2-everywhere.com #Google Dork: "Design by Everywhere" #Category: webapps #Tested On: windows 10, Firefox #Software Link: s2-everywhere.com Proof of Concept: 1-Search google Dork: "Design by Everywhere" Demo : http://www.acinverter.com.tw/product.php?uid=32&id=36[Sql Injection vulnerability] Demo : http://www.maxcomm.com.tw/news_detail.php?id=965dc505-3d6f-aa0a-dbf8-0e6acddd5bc6[Sql Injection vulnerability] ********************************************************* #Discovered by: Mostafa Farzaneh from PywebSecurity Team #Telegram: @pyweb_security *********************************************************
Source⚠️ www.s2-everywhere.com
User
 pyweb-security (UID 11883)
Submission08/14/2020 16:18 (6 years ago)
Moderation08/17/2020 08:06 (3 days later)
StatusAccepted
VulDB entry159954 [Everywhere CMS ID sql injection]
Points17

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!