Other Possible Sql Injection On 2 Websites
1. This is a gym's page which seems to have almost no security. I tried to do a SQL injection but couldn't retrieve anything.
This is the page:
Or you could access directly at their assets:
2. This is a big hardware store, the security on some assets seems to be poor.
Their page: fetasa.com.mx
The vulnerability: fetasa.com.mx/admin.php --- Here you can add code that is executed on fetasa.com.mx/productos.php but currently the page has a script that freezes it. Anyway, I think someone could do more.
Please share if you find a thing!
This is the page:
You do not have permission to view link
Log in or register now.
Or you could access directly at their assets:
You do not have permission to view link
Log in or register now.
---
You do not have permission to view link
Log in or register now.
2. This is a big hardware store, the security on some assets seems to be poor.
Their page: fetasa.com.mx
The vulnerability: fetasa.com.mx/admin.php --- Here you can add code that is executed on fetasa.com.mx/productos.php but currently the page has a script that freezes it. Anyway, I think someone could do more.
Please share if you find a thing!
