PHP Real Estate Script – SQL Injection

• Exploit Database
• 9 阅读

• 作者： L0rd CrusAd3r
  日期： 2010-06-09
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/13802/

• Author: L0rd CrusAd3r aka VSN [crusader_hmg@yahoo.com]
  Exploit Title:PHP Real Estate Script SQLi Vulnerability
  Version:1.0
  Price:249$
  Vendor url:http://www.realestates.com.bd/
  Published: 2010-06-09
  Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue™®, S1ayer,d3c0d3r and to all
  ICW members
  ###############################################################################################################################################################################################
  
  
  PHP Real Estate Script SQLi Vulnerability
  
  Author: L0rd CrusAd3r aka VSN [crusader_hmg@yahoo.com]
  
  #####################################################################################################################################################################################################
  
  Description:
  
  Eicra Real Estate Script is a fully scalable turn-key PHP MySQL Real
  Estate.
  Charge members to list ads or run in free mode.
  It is a powerful combination of the most desired features and easy-to-use
  interface for property management tasks.
  This professional real estate system allows you to automate and simplify the
  realty business process.
  With this solution be able to transform your business into a more
  efficient, productive and prosperous e-business enterprise.
  EicraRealEstate is a fully scalable turnkey PHP MySQL real estate script
  allowing site administrators to charge members to list properties.
  #######################################################################################################################################################################################################
  
  Vulnerability:
  
  *SQLi Vulnerability
  
  DEMO URL :http://server/index.php?plugin_id=28&p_id=[sqli]