Identified PHP/SQL leaks with roominfo.php

Potatofactory

New Member
roominfo.php is a great tool to find that theater is playing what and also to locate the history of a theater. However, It appears to be exploitable by simply entering a non-existing room or using the mecha theater.

User Agent:
Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36

Sources
Evidence
dCo3vWE.png

oU7On7C.png
 
Back
Top