Endonesia 8.7 SQL Injection

Endonesia version 8.7 suffers from a remote SQL injection vulnerability.


MD5 | 5df39410db8caf5474eddce81a6bcfe3

============================================================================================================================
| # Title : endonesia 8.7 en Sql Injection Vulnerability |
| # Author : indoushka |
| # Telegram : @indoushka |
| # Tested on : windows 10 Fr V.(Pro) |
| # Vendor : https://endonesia.sourceforge.io/ |
| # Dork : "Powered by Endonesia 8.7" |
============================================================================================================================

poc :

[+] Dorking Adegn Google Or Other Search Enggine .

[+] use payload : mod.php?mod=publisher&op=viewcat&cid=5

[+] admin panel : /admin or admin.php

http://127.0.0.1/endonesia.8.7.en/mod.php?mod=publisher&op=viewcat&cid=5 <==== inject here


Greetz :----------------------------------------------------------------------------------------
|
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz *Gjoko 'LiquidWorm' Krstic |
|
================================================================================================

Related Posts

Comments