CouponPHP CMS 3.1 SQL Injection

Posted on 27 March 2017

# # # # # # Exploit Title: CouponPHP Script v3.1 - SQL Injection # Google Dork: N/A # Date: 27.03.2017 # Vendor Homepage: http://couponphp.com/ # Software: http://couponphp.com/demos # Demo: http://newdemo2.couponphp.com # Demo: http://newdemo3.couponphp.com # Version: 3.1 # Tested on: Win7 x64, Kali Linux x64 # # # # # # Exploit Author: Ihsan Sencan # Author Web: http://ihsan.net # Author Mail : ihsan[@]ihsan[.]net # #ihsansencan # # # # # # SQL Injection/Exploit : # http://localhost/[PATH]/go.php?coupon_id=1&code=[SQL] # users # id # username # password # # # # #

TOP

Malware :

Hornbill
Spyware:Win32/Maxifiles
Spyware:Win32/CnsMin
Spyware:Win32/Webdir
Adware.Dealply!gen3

Last 20

Exploits :

Apache Solr Backup/Restore API Remote Code Execution
Nginx 1.25.5 Host Header Validation
Relate Learning And Teaching System SSTI / Remote Code Execution
Flowise 1.6.5 Authentication Bypass
WordPress Background Image Cropper 1.2 Shell Upload

Last 20