Fireshop SQL Injection

2012.06.20

Credit: Black Hat Group

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

Dork: inurl:\"fireshop ÙØ±Ù?Ø¯ØÙ?\"

###########################
# Exploit Title : fireshop SQL Injection
# Author : Black Hat Group
# Home : greyh4t.com & black-hg.org
# Software Link : http://firedesign.ir/fireshop/
# Security Risk : High
# Version : All Version
# Dork : inurl:"fireshop &#217;&#216;&#177;&#217;&#216;&#175;&#216;&#217;"
###########################
# p0c : news.php?id=[Sql]
###########################
# Special Thanks To : Net.Edit0r - A.Cr0x - 3H34N - G3n3rall - Nol1m1t
###########################

References:

http://firedesign.ir/fireshop/

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Fireshop SQL Injection

Dork: inurl:\"fireshop &#217;&#216;&#177;&#217;?&#216;&#175;&#216;&#217;?\"

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Dork: inurl:\"fireshop ÙØ±Ù?Ø¯ØÙ?\"

Thanks for you comment!
Your message is in quarantine 48 hours.