exploit-db-mirror/platforms/php/webapps/15773.txt

+Name : Projekt Shop (details.php) <<= SQL injection Vulnerability
+Autor : DeadLy DeMon
+Date : 18.12.2010
+Script : Projekt Shop
+Download : ----
+Site : http://www.mhproducts.de/php-scripte-5/projekt-shop.html
+Price : 49,90 Euro
+Language : PHP
+Tests : Windows XP SP 3 and Backtrack4 any other OS
+Discovered by DeadLy DeMon
+ Cyber - Warrior TIM =>> www.cyber-warrior.org
+Greetz to All System-Hacker, BlackApple , F0RTYS3V3N and All KinqSqlZCrew
Members
---------------------------------------------------------------------------------------

Bize kafa tutarm?? büyük hacker,
Kimlik ya?? 18 ak?l ya?? 1 sen giderken biz dönüyoduk
Sen emzikle emeklerken biz exploit yaz?yoduk :))

KinqSqlZCrew Akar....       Akl?n?za Gideriz Akl?n?z Gider [ Akl? olmayanlar
al?nmas?n sonra kar???yor :D ]

----------------------------------------------------------------------------------------

Bug ;
target/path/details.php?ts=' [Sql Inj.]
target/path/?sayfa=arama&iller=&ilceler=[SQL INJ]

---------------------------------------------------------------------------------------