{"id":45691,"date":"2023-07-27T19:53:18","date_gmt":"2023-07-27T15:53:18","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/173779\/amslogistics22-sql.txt"},"modified":"2023-08-02T13:34:21","modified_gmt":"2023-08-02T09:04:21","slug":"ams-logistics-2-2-sql-injection","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/ams-logistics-2-2-sql-injection\/","title":{"rendered":"AMS Logistics 2.2 SQL Injection"},"content":{"rendered":"<dl id=\"F173779\" class=\"file first\">\n<dt><a class=\"ico text-plain\" title=\"Size: 1.2 KB\" href=\"https:\/\/packetstormsecurity.com\/files\/download\/173779\/amslogistics22-sql.txt\" target=\"_blank\" rel=\"noopener\"><strong>AMS Logistics 2.2 SQL Injection<\/strong><\/a><\/dt>\n<dd class=\"datetime\">Posted <a title=\"14:14:52 UTC\" href=\"https:\/\/packetstormsecurity.com\/files\/date\/2023-07-27\/\" target=\"_blank\" rel=\"noopener\">Jul 27, 2023<\/a><\/dd>\n<dd class=\"refer\">Authored by <a class=\"person\" href=\"https:\/\/packetstormsecurity.com\/files\/author\/7697\/\" target=\"_blank\" rel=\"noopener\">indoushka<\/a><\/dd>\n<dd class=\"detail\">AMS Logistics version 2.2 suffers from a remote SQL injection vulnerability.<\/dd>\n<dd class=\"tags\">tags | <a href=\"https:\/\/packetstormsecurity.com\/files\/tags\/exploit\" target=\"_blank\" rel=\"noopener\">exploit<\/a>, <a href=\"https:\/\/packetstormsecurity.com\/files\/tags\/remote\" target=\"_blank\" rel=\"noopener\">remote<\/a>, <a href=\"https:\/\/packetstormsecurity.com\/files\/tags\/sql_injection\" target=\"_blank\" rel=\"noopener\">sql injection<\/a><\/dd>\n<dd class=\"md5\">SHA-256 | <code>c055825a498e3cdbb7ec70ab1ea8dd878ae30e419ded9bd11a3d50cac6ee442a<\/code><\/dd>\n<dd class=\"act-links\"><a title=\"Size: 1.2 KB\" href=\"https:\/\/packetstormsecurity.com\/files\/download\/173779\/amslogistics22-sql.txt\" rel=\"nofollow noopener\" target=\"_blank\">Download<\/a> | <a class=\"fav\" href=\"https:\/\/packetstormsecurity.com\/files\/favorite\/173779\/\" rel=\"nofollow noopener\" target=\"_blank\">Favorite<\/a> | <a href=\"https:\/\/packetstormsecurity.com\/files\/173779\/AMS-Logistics-2.2-SQL-Injection.html\" target=\"_blank\" rel=\"noopener\">View<\/a><\/dd>\n<\/dl>\n<div class=\"src\">\n<pre><code>====================================================================================================================================\r\n| # Title : AMS LOGISTICS 2.2 SQL injection Vulnerability |\r\n| # Author : indoushka |\r\n| # Tested on : windows 10 Fran\u00e7ais V.(Pro) \/ browser : Mozilla firefox 69.0(32-bit) | \r\n| # Vendor : https:\/\/www.amslogistics.co.th\/#software | \r\n====================================================================================================================================<\/code><\/pre>\n<p>poc :<\/p>\n<pre><code><\/code><\/pre>\n[+] Dorking \u0130n Google Or Other Search Enggine.<\/p>\n<pre><code><\/code><\/pre>\n[+] use payload : \/ai_news_read.php?l_id=AMS23050001 &lt;===== inject here<\/p>\n<pre><code><\/code><\/pre>\n[+] https:\/\/127.0.0.1\/wtheailogisticscom\/ai_news_read.php?l_id=AMS23050001<\/p>\n<pre><code><\/code><\/pre>\n<p>Greetings to :=================================================================<br \/>\njericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |<br \/>\n===============================================================================<\/p>\n<pre><code><\/code><\/pre>\n<p>&nbsp;<\/p>\n<pre><code><\/code><\/pre>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>AMS Logistics 2.2 SQL Injection Posted Jul 27, 2023 Authored by indoushka AMS Logistics version 2.2 suffers from a remote SQL injection vulnerability. tags | exploit, remote, sql injection SHA-256 | c055825a498e3cdbb7ec70ab1ea8dd878ae30e419ded9bd11a3d50cac6ee442a Download | Favorite | View ==================================================================================================================================== | # Title : AMS LOGISTICS 2.2 SQL injection Vulnerability | | # Author : indoushka | &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-45691","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45691","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=45691"}],"version-history":[{"count":1,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45691\/revisions"}],"predecessor-version":[{"id":45967,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45691\/revisions\/45967"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=45691"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=45691"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=45691"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}