16 matches found
EUVD-2007-0573
Malware in sbrugna...
EUVD-2002-0305
Malware in sbrugna...
AdMentor 1.00 Database Disclosure
| Title : AdMentor 1.00 Database Disclosure Exploit | Author : indoushka | email : [email protected] | Tested on: windows 8.1 Français V.Pro | Vendor : http://adyou.me/4TVD ========================================================= !/usr/bin/perl -w AdMentor 1.00 Database Disclosure Exploit...
AdMentor Admin Login SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22281/info AdMentor is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
AdMentor Script Remote SQL injection Exploit
===============================================================================================Script Name: AdMentor admin SQLinjection Coded by : Cr@zyKing Author : Cr@zyKing Contact : [email protected] Dork : inurl:"admentor/admin" Dork Ex. : http://www.google.com.tr/search?hl=tr...
CVE-2007-0575
Multiple SQL injection vulnerabilities in the administrative login page admin/login.asp in ASPCode.net AdMentor allow remote attackers to execute arbitrary SQL commands via the 1 Userid and 2 Password fields...
Sql injection
Multiple SQL injection vulnerabilities in the administrative login page admin/login.asp in ASPCode.net AdMentor allow remote attackers to execute arbitrary SQL commands via the 1 Userid and 2 Password fields...
CVE-2007-0575
CVE-2007-0575 describes multiple SQL injection vulnerabilities in the administrative login page (admin/login.asp) of ASPCode.net AdMentor. The root cause, as stated, is unsafely constructed SQL queries via the (1) Userid and (2) Password fields, enabling remote attackers to potentially execute ar...
AdMentor (banners) admin SQL injection
AdMentor banners admin SQL injection By : sn0oPy Risk : high Site : http://www.aspcode.net/products/admentor Dork : inurl:"admentor/admin" exploit : UserID = 'or' '=' Password = 'or' '=' contact : [email protected] greetz : subzero, Avg Teamhttp://forums.avenir-geopolitique.net. references :...
admentor-sql.txt
AdMentor banners admin SQL injection By : sn0oPy Risk : high Site : http://www.aspcode.net/products/admentor Dork : inurl:"admentor/admin" exploit : UserID = 'or' '=' Password = 'or' '=' contact : [email protected] greetz : subzero, Avg Teamhttp://forums.avenir-geopolitique.net. references :...
AdMentor (banners) admin SQL injection
AdMentor banners admin SQL injection By : sn0oPy Risk : high Site : http://www.aspcode.net/products/admentor Dork : inurl:"admentor/admin" exploit : UserID = 'or' '=' Password = 'or' '=' contact : [email protected] greetz : subzero, Avg Teamhttp://forums.avenir-geopolitique.net. references :...
AdMentor - Admin Login SQL Injection
AdMentor - Admin Login SQL Injection source: https://www.securityfocus.com/bid/22281/info AdMentor is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
AdMentor Login Flaw
AdMentor is a totally free ad rotator script written entirely in ASP. A security vulnerability in the product allows remote attackers to cause the login administration ASP to allow them to enter without knowing any username or password thus bypassing any authentication protection enabled for the...
CVE-2002-0308
Affected software : AdMentor (2.11). Vulnerability : admin.asp authentication bypass via SQL injection on the Login and Password arguments. Root cause : improper input handling in the login routine enabling SQL injection. Impact : remote attacker can bypass authentication and gain privileges. Exp...
CVE-2002-0308
admin.asp in AdMentor 2.11 allows remote attackers to bypass authentication and gain privileges via a SQL injection attack on the Login and Password arguments...
AdMentor Login Flaw
Regarding : AdMentor v2.11 and earlier Homepage: http://www.aspcode.net AdMentor allows any user to login as admin. The base path of the login is usually : http://www.someserver.com/admentor/admin/admin.a sp By using Login : ' or ''=' , and Password : ' or ''=' We create a legal query because it...