Electroweb Online Examination System 1.0 – SQL Injection

Exploit Database
37 阅读

作者： Ali Ghanbari

日期： 2016-06-06
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/39890/

# Exploit Title: Online examination system 1.0 - SQL Injection
# Google Dork: inurl:showtest.php?subid=
# Date: 2016/06/05
# Exploit Author: Ali Ghanbari
# Vendor Homepage: http://www.onlinefreeprojectdownload.com
# Sofware Link :
http://www.onlinefreeprojectdownload.com/download.php?name=projects/php%20projects/Online_exam.zip
# Version: 1.0

#Exploit:

http://localhost/{PATH}/showtest.php?subid=[SQL Injection]

#Admin Panel:

http://localhost/{PATH}/admin

####################################

[+]Exploit by: Ali Ghanbari

[+]My Telegram :@Exploiter007

last Exploits
Electroweb Online Examination System 1.0 – SQL Injection的更多信息

Joomla! Component com_units – SQL Injection：
InoERP 0.7.2 – Persistent Cross-Site Scripting：
FlightPath < 4.8.2 / < 5.0-rc2 - Local File Inclusion：
Joomla! Component com_gallery_wd – SQL Injection：
UGiA PHP UPLOADER 0.2 – Arbitrary File Upload：
Opencart 1.4.9.1 – Arbitrary File Upload：
OTRS Open Technology Real Services 3.1.4 – Persistent Cross-Site Scripting：
ImpressPages CMS 3.6 – Multiple Cross-Site Scripting / SQL Injection Vulnerabilities：