SQL injection vulnerability in listing.php in Gryphon gllcTS2 4.2.4 allows remote malicious users to execute arbitrary SQL commands via the sort parameter.
#!/usr/bin/perl
######################
#
#gllcTS2 (listingphp $sort) Remote Blind SQL Injection Exploit
#
######################
#
#Bug by: h0yt3r
#
##
###
##
#
#This one shows another vulnerability in the gllcTS2 (Thera are many with simple injections)
#Same Versions are affected
#Also shows the conecpt of how to inject an ORDER BY statement vi ...