Penny Auction version 5 suffers from a remote SQL injection vulnerability.
da7399819b1d026001a36c156a0fdea77083b9e9f7ecaae923be2cf92a0cecd0##################################################################################
_____ _ _ _ _____
| __ \ | | | | (_) / ____|
| |__) |_____ _____ | |_ _| |_ _ ___ _ __ | (___ ___ ___
| _ // _ \ \ / / _ \| | | | | __| |/ _ \| '_ \ \___ \ / _ \/ __|
| | \ \ __/\ V / (_) | | |_| | |_| | (_) | | | | ____) | __/ (__
|_| \_\___| \_/ \___/|_|\__,_|\__|_|\___/|_| |_| |_____/ \___|\___|
##################################################################################
Penny auction version - 5, SQLi Vulnerabilities
Product Page: http://www.auctionwebsitescript.com/penny_auction_v5.html
Script Demo: http://pennyauction-ver5.auctionwebsitescript.com
Author(Pentester): 3spi0n
On Web: RevolutionSec.Com - Janissaries.Org
On Social: Twitter.Com/eyyamgudeer
##################################################################################
[1] SQL Injection Vulnerabilities on Demo Site
[+] (index.php, show Param)
>>> http://pennyauction-ver5.auctionwebsitescript.com/index.php?show=product_penny&id='89
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed