[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Dashing Times SQL Injection Vulnerability

Author
3spi0n
Risk
[
Security Risk High
]
0day-ID
0day-ID-22541
Category
web applications
Date add
22-08-2014
Platform
php
##################################################################################
dashing times cms scripts, sql injection vulnerability.
products page: http://www.dashingtimes.in/portfolio/
author(pentester): 3spi0n
on social: twitter.com/eyyamgudeer
##################################################################################

[description]

i found vulnerability all cms scripts of dashingtimes web design.


[some weak websites]

[+] (categories.php, catid param)
>>> http://gayatrifashions.com/categories.php?catId='24

[+] (index.php, id param)
>>> http://skglassmachines.com/index.php?id='2
>>> http://mithasgroup.net/overview/index.php?id='24

[+] (page.php, id param)
>>> http://igsecurityindia.com/page.php?id='2
>>> http://rainbow-group.co.in/page.php?id='2
>>> http://sshousekeepingservices.com/page.php?id='10

##################################################################################
and greetings, grayhats and janissaries.
"since 2008, espion."
##################################################################################

#  0day.today [2024-12-25]  #