Thatware 0.4.6 – SQL Injection

Exploit Database
17 阅读

作者： Besim

日期： 2016-10-13
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/40521/

# Exploit Title :----------------- : Thatware 0.4.6 - (friend.php) - SQL Injection
# Author :------------------------ : Besim
# Google Dork :---------------- :-
# Date :-------------------------- : 13/10/2016
# Type :-------------------------- : webapps
# Platform : -------------------- :PHP
# Vendor Homepage :------- : -
# Software link : -------------- : https://www.exploit-db.com/apps/13132b3e0eaeffc3fad55fded9e5bdc6-thatware_0.4.6.tar.gz


############################ SQL INJECTION Vulnerabilty ############################

*-* Code *-* 

include ("header.php");
$result=mysql_query("select title from stories where sid=$sid")

*-* Vulnerable parameter-: $sid
 
*-* File-----------------: friend.php?sid=(SQL inj)

last Exploits
Thatware 0.4.6 – SQL Injection的更多信息

NodAPS 4.0 – SQL injection / Cross-Site Request Forgery：
CS-Cart 4.2.4 – Cross-Site Request Forgery：
osCommerce 2.3.4.1 – Remote Code Execution (2)：
Responsive E-Learning System 1.0 – Unrestricted File Upload to RCE：
LightNEasy 3.1.x – Multiple Vulnerabilities：
WordPress Plugin Recent Backups 0.7 – Arbitrary File Download：
openSIS 9.1 – SQLi (Authenticated)：
eXtreme Message Board 1.9.11 – Multiple Cross-Site Request Forgery Vulnerabilities：