ASPSiteware JobPost 1.0 SQL Injection

2010-12-04T00:00:00
ID PACKETSTORM:96370
Type packetstorm
Reporter R4dc0re
Modified 2010-12-04T00:00:00

Description

                                        
                                            `# Author: R4dc0re  
# Exploit Title: ASPSiteware JobPost SQL injection Vulnerability  
# Date: 04-12-2010  
# Vendor or Software Link: www.aspsiteware.com  
# Category:WebApp  
#Demo Link:http://www.aspsiteware.com/JobPost/  
#Version:1.0  
#Price:40$  
#Contact: R4dc0re@yahoo.fr  
#Website: www.1337db.com  
#Greetings to: R0073r(1337db.com), L0rd CrusAd3r,Sid3^effects and to rest of the 1337db members   
  
Submit Your Exploit at Submit@1337db.com  
  
########################################################################################  
[Product Detail]  
  
JobPost is an application ideal for the small or independent business or association who need a way to post   
and update job openings internally or on the internet. Ideal for intranets Backend by Access database,   
JobPost can store thousands of job postings in categories.  
  
[Vulnerability]  
  
SQL Injection:  
  
http://www.aspsiteware.com/JobPost/type.asp?iType=[Code]  
########################################################################################  
  
`