v-eva.com Classified Script version 5.1 suffers from a remote SQL injection vulnerability.
af8c6fef82152c1fa025ce2683785975dd322b015928d80b151db949f8f01370 ==================================================
v-eva.com Classified Script v5.1 SQLi Vulnerability
==================================================
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ 1
1 /' \ __ /'__`\ /\ \__ /'__`\ 0
0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1
1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0
0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1
1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0
0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1
1 \ \____/ >> Exploit database separated by exploit 0
0 \/___/ type (local, remote, DoS, etc.) 1
1 1
0 [+] Site : Inj3ct0r.com 0
1 [+] Support e-mail : submit[at]inj3ct0r.com 1
0 0
1 ########################################## 1
0 I'm Sid3^effects member from Inj3ct0r Team 1
1 ########################################## 0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
Name : v-eva.com Classified Script v5.1 SQLi Vulnerability
Date : june, 28 2010
Critical Level : HIGH
Vendor Url : http://www.v-eva.com/products/Classified-Script-v5.1.html
Author : Sid3^effects aKa HaRi <shell_c99[at]yahoo.com>
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger_,Sn!pEr.S!Te,n4pst3rr
greetz to :www.topsecure.net ,All ICW members and my friends :) luv y0 guyz
#######################################################################################################
Description:
Classified Script v5.1
Professionally developed PHP Classifieds script that was built with you - the site owner - in mind and to assist you in generating income from your website. Whether you are running classifieds for autos, motorcycles, bicycles, rv’s, guns, horses, or general merchandise, our product is the right package for you.
* Allow buyers and sellers to communicate directly
* List each item with image, description, pricing, and others
* Charge a listing fee or let sellers do it for free
* Broadcast your ads contents via RSS feed
* Set the listings to require approval or auto-approve
* You can have map on site for each listing
* You can change design for your site with single click. You can also request us for custom design.
###############################################################################################################
Xploit: SQLi VUlnerability
DEMO URL : http://www.classifieddemo.com/classified_img.php?clsid=[injection code]
###############################################################################################################
# 0day no more
# Sid3^effects
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed