MLMAuction Script suffers from a remote SQL injection vulnerability.
61883662fcac3e6fb4617d4823ff1a35dbd99517e892a83621379b94e2815c2e
##################################################################################
_____ _ _ _ _____
| __ \ | | | | (_) / ____|
| |__) |_____ _____ | |_ _| |_ _ ___ _ __ | (___ ___ ___
| _ // _ \ \ / / _ \| | | | | __| |/ _ \| '_ \ \___ \ / _ \/ __|
| | \ \ __/\ V / (_) | | |_| | |_| | (_) | | | | ____) | __/ (__
|_| \_\___| \_/ \___/|_|\__,_|\__|_|\___/|_| |_| |_____/ \___|\___|
##################################################################################
MLMAuction Script, SQL Injection Vulnerabilities
Product Page: http://www.auctionwebsitescript.com/mlm_auction.html
Script Demo: http://mlmauction.auctionwebsitescript.com/
Author(Pentester): 3spi0n
On Web: RevolutionSec.Com - GraySecure.Org
On Social: Twitter.Com/eyyamgudeer
##################################################################################
[1] SQL Injection Vulnerability on Demo Site
[+] (gallery.php, id Param)
>>> http://mlmauction.auctionwebsitescript.com/gallery.php?id='1