Philippines Navy website (www.navy.mil.ph) hacked by the hacker going with the handle Pr3 H4ck3r and the hacker also leaked the database credentials of the website online.
The Hacker found and exploited SQL injection flaw on the website and dumped the usernames, emails and passwords. Over 50+ emails with passes are leaked, According to Pinoyhacknews.
The hacker also mentioned the crafted URL which allowed the hacker to get into the database of the website.
http://www.navy.mil.ph/alcaraz/blog_full.php?news_id=-1012 UNION SELECT 1,2,3,4,group_concat(username,0x3a,password),6,7,8,9,10,11,12,13,14 from tbl_users–
The leaked database includes email addresses, usernames and encrypted passwords belonging to navy officials. The complete leaked doc can be found here.