Hey.
Recently found a SQL injection on Tochka Free Market which makes it possible to dump all users and the whole Database -
I havent yet have time to it as i am working on a much bigger project right now .. Sure someone else like LE may have done it or maby not because its a shit market . Well you allways need to use your brain and never use the same passwords everywhere, just like hansa now the feds are using theese passwords to drain customers wallet / Vendor Wallets over at Dream Market. Btw I'm 100% Sure there is alot of honeypots setup just to try your passwords on difrent site.
Proof http://uploads.im/Nj6DK.png
Contcated Tochka Admin no response for 3-4 days remove it from the super list. https://www.deepdotweb.com/marketplace-directory/listing/t%E2%80%A2chka-free-market/
Stay cool everyone. Coming more soon
Are you assuming SQL Injection because it says "invalid syntax". From what I can tell it is just a ParseInt error saying that the string "5'" is invalid syntax as an integer.
Also lol @ CAPTCHA resolver