My PHP Dating 2.0 – ‘id’ SQL Injection

• Exploit Database
• 17 阅读

• 作者： Sniper Pex
  日期： 2017-01-09
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/41001/

• # Vulnerability: My Php Dating 2.0 - SQL Injection 
  
  # Google Dork: use your mind
  
  # Date: 09.01.2017
  
  # Vendor Homepage: http://www.phponlinedatingsoftware.com/demo.htm
  
  # Tested on: win7
  
  # Author: Nassim Asrir
  
  # Author Company: Henceforth
  
  # Contact: wassline@gmail.com 
  #########################
  
  
  # SQL Injection/Exploit :
  
  # Vulnerable Parametre : id
  
  # http://localhost/[PATH]/view_profile.php?id=[SQL]