Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormSid3 effectsPACKETSTORM:89089
HistoryApr 30, 2010 - 12:00 a.m.

AutoDealer 1 / 2 SQL Injection

2010-04-3000:00:00
Sid3 effects
packetstormsecurity.com
19
JSON
`  
  
# Exploit Title:MSSQLi Vulnerability in AutoDealer Ver.1 and Ver.2  
# Version: Web Application  
# vendor :http://www.aspsiteware.com/Auto.asp  
# Date: 30 apr,2010  
# Dork:Copyright © 2010 ASP SiteWare. All rights reserved.  
# Author:Sid3^effects  
# Code :  
--------------------------------------------------------------------------------------  
#####################Sid3^effects aKa HaRi##################################  
#Greetz to all Andhra Hackers and ICW Memebers[Indian Cyber Warriors]  
#Thanks:*L0rd ÇrusAdêr*,d4rk-blu™®,R45C4L idi0th4ck3r,CR4C|< 008,M4n0j,MaYuR  
#ShouTZ:kedar,dec0d3r,41.w4r10r   
#Catch us at www.andhrahackers.com or www.teamicw.in  
############################################################################  
  
Description :  
AutoDealer is an application ideal for the small or independent new or used car dealer who needs a way   
  
to display and update their inventory online. Backend by Access database, AutoDealer can store   
  
thousands of vehicles in categories with images.  
  
############################################################################  
  
Xploit : MSSQLi Vulnerability  
  
  
Ver.1  
DEMO URL :http://www.aspsiteware.com/Auto1/type.asp?iType=[ur injection code]  
  
Ver.2  
DEMO URL :http://www.aspsiteware.com/auto2/auto2/detail.asp?iPro=[ur injection code]  
  
############################################################################  
  
  
#Sid3^effects  
  
  
  
  
  
`
JSON