Projekt Shop - 'details.php' Multiple SQL Injections

🗓️ 18 Dec 2010 00:00:00Reported by DeadLy DeMonType

'Projekt Shop' details.php SQL Injection Vulnerability. Discovered by DeadLy DeMon on 18.12.2010 for Projekt Shop PHP script

+Name : Projekt Shop (details.php) <<= SQL injection Vulnerability
+Autor : DeadLy DeMon
+Date : 18.12.2010
+Script : Projekt Shop
+Download : ----
+Site : http://www.mhproducts.de/php-scripte-5/projekt-shop.html
+Price : 49,90 Euro
+Language : PHP
+Tests : Windows XP SP 3 and Backtrack4 any other OS
+Discovered by DeadLy DeMon
+ Cyber - Warrior TIM =>> www.cyber-warrior.org
+Greetz to All System-Hacker, BlackApple , F0RTYS3V3N and All KinqSqlZCrew
Members
---------------------------------------------------------------------------------------

Bize kafa tutarmış büyük hacker,
Kimlik yaşı 18 akıl yaşı 1 sen giderken biz dönüyoduk
Sen emzikle emeklerken biz exploit yazıyoduk :))

KinqSqlZCrew Akar....       Aklınıza Gideriz Aklınız Gider [ Aklı olmayanlar
alınmasın sonra karışıyor :D ]

----------------------------------------------------------------------------------------

Bug ;
target/path/details.php?ts=' [Sql Inj.]
target/path/?sayfa=arama&iller=&ilceler=[SQL INJ]

---------------------------------------------------------------------------------------

18 Dec 2010 00:00Current

7.4High risk

Vulners AI Score7.4

Projekt Shop - &#039;details.php&#039; Multiple SQL Injections

Projekt Shop - 'details.php' Multiple SQL Injections