Exploit for Mr Blog PHP Cross Site Scripting / SQL Injection

Name: Exploit for Mr Blog PHP Cross Site Scripting / SQL Injection
Rating: 5 (193 reviews)

2019-11-01 | CVSS 0.3

## https://sploitus.com/exploit?id=PACKETSTORM:155073
[+] Mr Blog PHP Script Multiple Vulnerabilities  
[+] Author : z3r0fy  
[+] Twitter.com/z3r0fy  
[+] Cx Security Link : https://cxsecurity.com/issue/WLB-2019100165  
  
# Download Pages :  
  
[+] https://wmaraci.com/forum/scriptler/kisisel-mr-blog-scripti-ucretsiz-indir-500655.html  
[+] https://scriptadresim.blogspot.com/2017/05/mr-blog-mobil-uyumlu-responsive-tasarm.html  
[+] https://donanimplus.com/phpscript/kisisel-mr-blog-scripti-ucretsiz-indir/  
  
  
# Vulnerabilities  
  
[+] Vulnerability 1 - SQL Injection  
  
[+] Vulnerability: http://vulnerabletarget.com/foot.php?kat=[SQL]  
  
*********************************************************  
  
[+] Vulnerability 2 - Cross-Site Scripting  
  
[+] VUlnerable : http://vulnerabletarget.com/sayfa-duzenle.php?duzenle=[XSS Payload]