# Exploit Title: PHP E-MALL Script SQL injection Vulnerability # Date: 15/06/2010 # Author: JaMbA # vendor: www.sellatsite.com # Tested on: Windows # CVE : () ::::::::::::::::::::::::::::: ::::::::::::::::::::::::: =====================================Exploit=============== ========================= [ D3M0 ] http://server.com/path/products.php?cid=21[ Sql Code] =========================================================== GreeTz: SWT Labs And All Tunisian Hacker =========================