The Latest Infosec News, Tools, and Exploits – Got Root?
Description The main idea for the tool is scanning for Error Based SQL Injection by using different payloads like And match for 152 error regex patterns for different databases.Source: https://github.com/sqlmapproject/sqlmap/blob/master/data/xml/errors.xml How does it work? It’s […]
Installation pip sudo pip install userefuzz setup git clone https://github.com/root-tanishq/userefuzz cd userefuzz sudo python3 setup.py install Usage Parsing URLs Parsing a list of URLs $ userefuzz -l <LIST> Parsing a URL $ userefuzz -u <URL> […]
Agartha is a penetration testing tool which creates dynamic payload lists and user access matrix to reveal injection flaws and authentication/authorization issues. There are many different attack payloads exists, but Agartha creates run-time, systematic and […]
Features In its current state, it will only work with torrc MAX CIRCUIT DIRTINESS of 10 Cloudflare Resolver [Cloudbuster] LFI->RCE and XSS Scanning [LFI to RCE & XSS] SQL Injection Vuln Scanner [SQLi] Extremely Large […]
jSQL Injection is a lightweight application used to find database information from a distant server. It’s free, open source and cross-platform for Windows, Linux and Mac OS X with Java from version 8 to 15. […]
WordPress Good LMS plugin versions 2.1.4 and below suffer from a remote SQL injection vulnerability.
Customer Support System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Lot Reservation Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass
Fuel CMS version 1.4.8 suffers from an authenticated remote SQL injection vulnerability.
