Web Wiz Forums 9.68 - SQL Injection

EDB-ID:

13788

CVE:

N/A




Platform:

ASP

Date:

2010-06-09


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

       =========================================
        Web Wiz Forums 9.68 SQLi  Vulnerability
       =========================================

Name : Web Wiz Forums 9.68 SQLi Vulnerability
Date : june, 9 2010
Vendor url :http://www.webwiz.co.uk/webwizforums/
Platform: Windows
Price:$199
Author : Sid3^effects aKa HaRi <shell_c99[at]yahoo.com>
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,gunslinger_
greetz to :All ICW members.

###############################################################################################################
Description:

FREE ready to run discussion forum application featuring: Fast performance tuned SQL engine, 100's of easy to setup generic features, AD FREE, Unlimited Forums, Sub Forums, Topics, Posts, Members, & Groups, WYSIWYG post editor, web based setup/admin, RSS Feeds, skins, private messenger, calendar system, moderated posts, per forum security settings, unlimited member groups, integrate with existing member base, ladder system, password protect forums, moderators, image/file/avatar upload, search facilities, animated emoticons, avatar gallery, members list, hot topics, powerful admin tools, language files, IP banning, high security, CAPTCHA, Windows Authentication, support for load balanced web servers and web farms, API's, and lots more. FREE SUPPORT!! SQL Server 2000 & 2005 / mySQL 4.1+ & 5+ / MS Access versions.

###############################################################################################################

Xploit: SQLi Vulnerability

DEMO  URL:

       http://site.com/new_reply_form.asp?TID=[SQLi]


###############################################################################################################
# 0day no more 
# Sid3^effects