#Exploit Title: Lógico y Creativo – SQL Injection vulnerability
#Date: 2020-06-21
#Exploit Author: Mostafa Farzaneh
#Vendor Homepage: www.logicoycreativo.com
#Google Dork: “Desarrollo: Lógico y Creativo”
#Category: webapps
#Tested On: windows 10, Firefox
#Software Link: www.logicoycreativo.com
#version:1.0
#CVE: not yet

Proof of Concept:
1-Search google Dork: “Desarrollo: Lógico y Creativo”
Demo: https://www.tiendachicago.com.ar/product.php?id=15[Sql Injection vulnerability]
Demo: http://multiespacioafrodita.com/product.php?id=14[Sql Injection vulnerability]
Demo: http://www.lebel.com.ar/blogpost.php?id=49[Sql Injection vulnerability]
*********************************************************
#Discovered by: Mostafa Farzaneh
#Telegram: @pyweb_security
*********************************************************





Source link

You must be logged in to post a comment.