Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdtL0rd CrusAd3r1337DAY-ID-16697
HistoryAug 17, 2011 - 12:00 a.m.

Code Widget DataBound Index style menu (ASP) SQL injection

2011-08-1700:00:00
L0rd CrusAd3r
0day.today
22
JSON

Exploit for asp platform in category web applications

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            :  1337day.com                                  0
1                     inj3ct0r 1337 Day Team                           1
0                                                                      0
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

Author: L0rd CrusAd3r aka VSN [[email protected]]
Exploit Title: Code Widget DataBound Index style menu (ASP) SQL injection Vulnerability 
Vendor url: http://www.comriesoftware.net/codewidgets/product.aspx?key=106
Published: 17-August-2011
Greetz to:r0073r (1337day.com), r4dc0re, Sid3^effects,See Me, Awesomeness, Sonic Bluehat.
Special Greetz: inj3ct0r Team
Shoutzz:- To all My hacker friends

Price:20$  PS: This is not the cost of the Exploit but Cost of the Product..Information for n00bs alone 

~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*
Description:

ASP and Microsoft® Access 2000 Search engine style index menu.
Includes source code, database and demo application. Contents stored in database file.
Hierarchial n-Tier structure allows you to drill down by sub-category
Top Level to Child and Child to Child relationships.

~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*~*~*~*~~*~*~*

Vulnerability:

*SQL injection Vulnerability

DEMO URL: http://www.codewidgets.net/CS0106/category.asp?cat=[sqli]

# 0day n0 m0re #
# L0rd CrusAd3r #



#  0day.today [2018-04-02]  #
JSON