Lucene search
+L

4 matches found

seebug
seebug
added 2014/07/01 12:0 a.m.39 views

OpenCart <= 1.5.6.1 - (openbay) Multiple SQL Injection

No description provided by source. Exploit Title : OpenCart = 1.5.6.1 SQL Injection Date : 2014/3/26 Exploit Author : Saadat Ullah ? [email protected] Software Link : http://www.opencart.com/index.php?route=download/download : https://github.com/opencart Software web : www.opencart.com...

7.1AI score
Exploits0
zdt
zdt
added 2014/03/26 12:0 a.m.158 views

OpenCart 1.5.6.1 SQL Injection Vulnerability

OpenCart versions 1.5.6.1 and below suffer from a remote SQL injection vulnerability. Exploit Title : OpenCart log'getEbayItemId - Product ID: '.$productid; $qry = $this-db-query"SELECT ebayitemid FROM " . DBPREFIX . "ebaylisting WHERE productid = '".$productid."' AND status = '1' LIMIT 1";...

8.1AI score
Exploits0
exploitdb
exploitdb
added 2014/03/26 12:0 a.m.35 views

OpenCart 1.5.6.1 - &#039;openbay&#039; Multiple SQL Injections

Exploit Title : OpenCart log'getEbayItemId - Product ID: '.$productid; $qry = $this-db-query"SELECT ebayitemid FROM " . DBPREFIX . "ebaylisting WHERE productid = '".$productid."' AND status = '1' LIMIT 1"; .............. Function is called on many locations and paramter is passed without santize...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2014/03/25 12:0 a.m.30 views

OpenCart 1.5.6.1 SQL Injection

Exploit Title : OpenCart log'getEbayItemId - Product ID: '.$productid; $qry = $this-db-query"SELECT ebayitemid FROM " . DBPREFIX . "ebaylisting WHERE productid = '".$productid."' AND status = '1' LIMIT 1"; .............. Function is called on many locations and paramter is passed without santize...

Exploits0
Rows per page
Query Builder