26 lines
No EOL
1.3 KiB
Text
26 lines
No EOL
1.3 KiB
Text
Name : Netartmedia iBoutique.MALL SQLi Vulnerability
|
|
Date : june, 28 2010
|
|
Critical Level : HIGH
|
|
Vendor Url : http://www.netartmedia.net/mall/
|
|
Author : Sid3^effects aKa HaRi <shell_c99[at]yahoo.com>
|
|
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger_,Sn!pEr.S!Te,n4pst3rr
|
|
greetz to :www.topsecure.net ,All ICW members and my friends :) luv y0 guyz
|
|
#######################################################################################################
|
|
Description:
|
|
iBoutique.MALL is a powerful and flexible multi merchants php mall solution. It makes possible for the merchants to signup and create their
|
|
|
|
online stores with ease. They could start selling their good within minutes without having any html knowledge. iBoutique.MALL offers a lot of
|
|
|
|
useful functionalities for both merchants (to manage their product inventory and payments, invoice generation, statistics, ...) and
|
|
|
|
administrators, to control the whole system
|
|
###############################################################################################################
|
|
|
|
Xploit: SQLi VUlnerability
|
|
|
|
|
|
DEMO URL : http://server/path/index.php?mod=products&cat=[sqli]
|
|
|
|
###############################################################################################################
|
|
# 0day no more
|
|
# Sid3^effects |