Submit #187: MINMAX – SQL Injection vulnerabilityinfo

Title	MINMAX – SQL Injection vulnerability
Description	#Exploit Title: MINMAX – SQL Injection vulnerability #Exploit Author: Mostafa Farzaneh #Vendor Homepage: https://minmax.biz #Google Dork: "Designed by MINMAX" #Category:webapps #Tested On: windows 10, Firefox #Software Link : https://minmax.biz #CWE: CWE-89 Proof of Concept: 1-Search google Dork: "Designed by MINMAX" Demo: https://www.dama.com.tw/newsDia.php?d=19 [Sql Injection vulnerability] Demo: https://www.sunnybeautyclinic.com.tw/newsDia.php?cls=N000001&id=93 [Sql Injection vulnerability] Demo: https://www.niken.com.tw/newsDia.php?id=94 [Sql Injection vulnerability] ******************************************************* #Discovered by: Mostafa Farzaneh from PywebSecurity Team #Telegram: @pyweb_security *******************************************************
Source	⚠️ https://minmax.biz
User	pyweb-security (UID 11883)
Submission	08/14/2020 16:25 (6 years ago)
Moderation	08/17/2020 08:09 (3 days later)
Status	Accepted
VulDB entry	159957 [MINMAX /newsDia.php ID sql injection]
Points	17

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!