info
discussion
exploit
solution
references
ASPNuke Comment_Post.ASP SQL Injection Vulnerability
No exploit is required.
The following exploit will retrieve the administrator username and the SHA256 hash of the administrator password:
/data/vulnerabilities/exploits/sql_exploit_aspnuke.pl
Privacy Statement
Copyright 2010, SecurityFocus
