Victor cms 1.0 search sql injection Vulnerability / Exploit
/
/
/
Exploits / Vulnerability Discovered : 2020-08-06 |
Type : webapps |
Platform : php
This exploit / vulnerability Victor cms 1.0 search sql injection is for educational purposes only and if it is used you will do on your own risk!
[+] Code ...
# Exploit Title: Victor CMS 1.0 - 'Search' SQL Injection
# Date: 2020-08-04
# Exploit Author: Edo Maland
# Vendor Homepage: https://github.com/VictorAlagwu/CMSsite
# Software Link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip
# Version: 1.0
# Tested on: XAMPP / Windows 10
-------------------------------------------------------------------------------------------------------------------------------------
# Discription:
# The Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page.