3 matches found
PG All Share Video 1.0 - SQL Injection
PG All Share Video 1.0 - SQL Injection Exploit Title: PG All Share Video 1.0 - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://www.pilotgroup.net/ Software Link: http://www.allsharevideo.com/features.php Demo: http://demo.allsharevideo.com/ Version: 1.0 Category: Webapps Tested o...
PG All Share Video 1.0 - SQL Injection
Exploit Title: PG All Share Video 1.0 - SQL Injection Dork: N/A Date: 30.10.2017 Vendor Homepage: http://www.pilotgroup.net/ Software Link: http://www.allsharevideo.com/features.php Demo: http://demo.allsharevideo.com/ Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE:...
CVE-2017-15969
CVE-2017-15969 affects PG All Share Video 1.0. Description from CNVD/NVD indicates a SQL injection vulnerability exploitable via PATH_INFO in endpoints such as /search/tag, /friends/index, /users/profile, and /video_catalog/category. The root cause is unsanitized PATH_INFO allowing injected SQL c...