WRITEUP #3003

SQL Injection, Reflected XSS and Information Disclosure in one subdomain in just 10 minutes

SQL InjectionXSSInformation disclosure

by@7odamo_(Mahmoud Hamed)

Program

Published

Feb 8, 2022

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://web.archive.org/web/20220214063345/https://7odamo.medium.com/sql-injection-reflected-xss-and-information-disclosure-in-one-subdomain-in-just-10-minutes-f2ce877b43d4

▸ RELATED WRITEUPS

Directory Traversal, SQL Injection and Server-Side Request Forgery

SQL InjectionPath traversal

Self-XSS to ATO via Site Features

XSSSelf-XSS

How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack

XSS

P3 (Medium) : How I Gain Access To NASA's Internal Workspace?!

ReconInformation disclosure

Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities

XSSReflected XSS

Built with ❤️ by Shubham Rawat