Omegle Clone version 2.0 suffers from a remote SQL injection vulnerability.
2fe43b4b53272ca9097cd1d818055695
################################################
#Title: Omegle Clone 2.0 - SQL injection
#Credit: Bilal KARDADOU
#Vendor: http://www.turnkeycentral.com
#Vendor URL: http://www.turnkeycentral.com/scripts/omegle-clone/
#Product: Omegle Clone 2.0
#Google Dork: N/A
################################################
#
# Product & Service Introduction:
#
# "Omegle Clone"
# Start Your own chat service like Omegle. But whatas Omegle exactly? When
a visitor comes to the website heas able to start talking with a random
person.
# Both donat know each other a thatas why we call them strangers.
# And this is the slogan of Omegle Clone.
# Talk to strangers!
# Read below some basic features and test the demo.
# This is an amazing turnkey website opportunity.
#
# http://localhost/omegleclone/listenToReceive.php?userId=[SQL]
# http://localhost/omegleclone/randomChat.php?userId=[SQL]
#
# PoC:
# http://prnt.sc/en4co1
#
# Bilal KARDADOU - https://www.linkedin.com/in/kardadou/)
################################################
--
*Bilal Kardadou*
IT Security Consultant
*E* : [email protected] | *E* : [email protected] |