eBay Auction Premium Clone Script 6.42 SQL Injection

2017-04-21 / 2017-04-22
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89

################################################ #Title: eBay Auction Premium Clone Script - SQL injection #Credit: Bilal KARDADOU #Vendor: http://bimedia.info #Vendor URL: http://bimedia.info/ebay-auction-premium-clone-script/ #Product: eBay Auction Premium Clone Script #Demo: http://ebayp.clonedemo.com/ #Google Dork: N/A ################################################ # # Product & Service Introduction: # # "eBay Auction Premium Clone Script" # This is the ULTIMATE eBay Auction Script! Comes with all the features of our eBay Lite plus much more, look below. # # http://ebayclone/categories.php?limit=25[SQL]&page_url=categories&category=businesses-for-sale&parent_id=887&item_type=all # # PoC: # http://prntscr.com/eyrp2t # http://prntscr.com/eyrrc2 # Bilal KARDADOU - https://www.linkedin.com/in/kardadou/) ################################################ -- [image: 2017-04-04_21-41-59.png] Bilal Kardadou IT Security Consultant & Bug Bounty Hunter [image: linkedin.png] <https://www.linkedin.com/in/kardadou/>[image: pinterest.png] <https://packetstormsecurity.com/files/author/12802/>[image: facebook.png] <https://www.facebook.com/o9n75oo9754hmoobboomwooow986yh> The more control you impose the less control you have.


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2018, cxsecurity.com

 

Back to Top