Sunbyte e-Flower - SQL Injection

EDB-ID:

10762

CVE:

N/A




Platform:

PHP

Date:

2009-12-28


/**************************************************************************

[!] Sunbyte e-Flower SQL Injection Vulneralbility
[!] Author      : Don Tukulesto (root@indonesiancoder.com)
[!] Homepage    : http://www.indonesiancoder.com
[!] Date        : December 28, 2009
[!] Tune In     : http://antisecradio.fm (choose your weapon)

**************************************************************************/

[ Software Information ]

[+] Vendor : http://www.sunbyte.net/
[+] Download : http://store.esellerate.net/s.aspx?s=STR932252155
[+] Version() : -
[+] Price : $150
[+] Overview : Sunbyte eFlower is an e-commerce system that helps your florist shop takes order through Internet.
[+] Method : SQL Injection
[+] Dork : Nothing else Matter

===========================================================================

[ Got Error ]

http://server/eFlower/index.php?s=cat&m=o&id=[IndonesianCoder-2009]

===========================================================================