Scripts Genie Domain Trader SQL Injection

2013-02-16T00:00:00
ID PACKETSTORM:120354
Type packetstorm
Reporter 3spi0n
Modified 2013-02-16T00:00:00

Description

                                        
                                            `##################################################################################  
__ _ _ ____   
/ /___ _____ (_)_____________ ______(_)__ _____ / __ \_________ _  
__ / / __ `/ __ \/ / ___/ ___/ __ `/ ___/ / _ \/ ___// / / / ___/ __ `/  
/ /_/ / /_/ / / / / (__ |__ ) /_/ / / / / __(__ )/ /_/ / / / /_/ /   
\____/\__,_/_/ /_/_/____/____/\__,_/_/ /_/\___/____(_)____/_/ \__, /   
/____/   
##################################################################################   
Domain Trader Script, MySQL Injection Vulnerabilities  
Software Page: http://scriptsgenie.com/index.php?do=catalog&c=scripts&i=domain_trader_script_w%252Fparking  
Script Demo: http://www.scriptsgenie.com/demo/trader/  
  
Author(Pentester): 3spi0n  
On Social: Twitter.Com/eyyamgudeer  
Greetz: Grayhats Inc. and Janissaries Platform.  
##################################################################################  
  
[~] MySQL Injection on Demo Site (/catalog.php?viewdomain=now&id=)  
  
>>> http://www.scriptsgenie.com/demo/trader/catalog.php?viewdomain=now&id=1' (MySQLi Found)  
  
`