Siemens and Canon's Databases exploited by Team INTRA

Recently a hacker known as "JoinSe7en" from Team INTRA claims to have hacked into subdomains of Canon and Siemens. Apparently, the hacker has found and exploited a Blind SQL Injection vulnerability in Canon's website and a Error based SQL Injection in Siemens.

He published a full disclosure on both of the databases on pastebin:
Siemens : http://pastebin.com/HBL966wh
Canon : http://pastebin.com/fbL0s9aS

These pastebin notes include the vulnerable links of respective sites and extracted database info with usernames and passwords of Siemens Users & Canon forum, sites user credentials.

Have something to say about this article? Comment below or share it with us on Facebook, Twitter or our LinkedIn Group.