This is a writeup describing a SQL injection vulnerability in osCommerce. It provides a URI structure for exploiting the vulnerability, including parameters for manufacturer ID, product ID, and SQL injection payloads.
Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target:osCommerce
No auth needed
Prerequisites:Valid manufacturer ID and product ID