Sites powered by Restaurantbiller suffer from remote shell upload and remote SQL injection vulnerabilities.
f4a1adac8a45ce05a5b00694825f0222021b21e9d260550f0910c915cc9c69e7===================================================================================
[+] TITLE : Restaurantbiller Multiple Vulnerabilities
[+] VENDOR : http://www.demo.restaurantbiller.com/
[+] VERSION : -
[+] AUTHOR : R3vanBastard
[+] TESTED ON : Windows
[+] DORK : "Powered by Restaurant Biller" inurl:/index.php?act=category&cid=
[+] YM : revan_blezinsky[at]yahoo.com
[+] Exploit : Not for sale :D free!!!!!
====================================================================================
DEMO: http://piccolos.ky//index.php?act=category&cid= [SQLi]
Login into admin panel then upload your backdoor (easy?)
Shell: http://piccolos.ky/UserFiles/Image/product_photos/54c7f27f03a59.shell.php
Note: You will get sensitive data in the database like payment information :D
=====================================================================================
Thanks to: My PC | Jogjamakeup.com | Mainhack |VOP CREW| Jack | rdnc.or.id |
BoBy a.k.a c0li(yg botnya di gangbang)
=====================================================================================
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed