My PHP Dating 2.0 - 'id' Parameter SQL Injection

2017-01-09 09:05:09

# Vulnerability: My Php Dating 2.0 - SQL Injection

# Google Dork: use your mind

# Date: 09.01.2017

# Vendor Homepage: http://www.phponlinedatingsoftware.com/demo.htm

# Tested on: win7

# Author: Nassim Asrir

# Author Company: Henceforth

# Contact: [email protected]
#########################


# SQL Injection/Exploit :

# Vulnerable Parametre : id

# http://localhost/[PATH]/view_profile.php?id=[SQL]

Fixes

No fixes

In order to submit a new fix you need to be registered.