webyapar-sql.txt
Posted on 26 July 2007
######################################################################################################################### ######################################################################################################################### ############/$$$$$$$$$$$////$$$$$$$$$$$//###################///////////###############//$$$$$$$$$$$$$$$//$$$$$$$$$$$$$$$/ ###///////##/$$$$$$$$//////////$$$$$$$$//####################/////////#####//////$$$$$//$$$$/////////////$$$$//////////// ##///////###/$$$$$$$////////////$$$$$$$//#####///////////#####///////#####///////$$$$$//$$$$/////////////$$$$//////////// ##//////###///$$$$$$$//////////$$$$$$$///#####///////////#####//////#####////////$$$$$//$$$$/////////////$$$$//////////// ##/////###/////$$$$$$$////////$$$$$$$////#####//////////######/////#####/////////$$$$$//$$$$/////////////$$$$//////////// ##////###///////$$$$$$$//////$$$$$$$/////######////////#######////#####//////////$$$$$//$$$$/////////////$$$$//////////// ##///###/////////$$$$$$$////$$$$$$$//////#######//////#######////#####///////////$$$$$//$$$$/////////////$$$$//////////// ###################$$$$$$##$$$$$$################################################$$$$$##$$$$$$$$$$$$$$$##$$$$$$$$$$$$$$$$ ####################$$$$$$$$$$$$#################################################$$$$$##$$$$$$$$$$$$$$$##$$$$$$$$$$$$$$$$ ##///###////////////$$$$$$$$$$$$/////////#########////////////#####//////////////$$$$$//$$$$$$$$$$$$$$$//$$$$$$$$$$$$$$$$ ##////###////////////$$$$$$$$$$//////////########////////////#####///////////////$$$$$/////////////$$$$//////////////$$$$ ##/////###////////////$$$$$$$$///////////#######////////////#####////////////////$$$$$/////////////$$$$//////////////$$$$ ##//////###////////////$$$$$$////////////#######///////////#####/////////////////$$$$$/////////////$$$$//////////////$$$$ ###//////##/////////////$$$$/////////////#######//////////#####//////////////////$$$$$/////////////$$$$//////////////$$$$ ############/////////////$$//////////////#######/////////#####///////////////////$$$$$//$$$$$$$$$$$$$$$//$$$$$$$$$$$$$$$$ ######################################################################################################################### ######################################################################################################################### ##### TURKISH SECURÄ°TY MAN AND C0D3R ####################### MAÄ°L : dumanhack@gmail.com ########################### ##### - ##### web : ########## ##### PERFECT C0D3R AND SECURÄ°TY ## >>>>>>>>>>>>>> MESSAGE : HAYAT Ä°LLEGAL <<<<<<<<<<<<<<< ## ######################################################################################################################### # Title : webyapar v2.0 Remote Blind SQL Injection Vulnerability # AUTHOR: : bypass # script name : Webyapar v2.0 { 700$ } # Language : Tr # scritp web page : www.webyapar.com # script bug : remote sql enjeksiyon # script admin panel1 : http://victim/script_path/yonetim # script admin panel2 : http://victim/script_path/yonetim2 # google dork : inurl:"?page=duyurular_detay&id=" #Message Tr : ingilizcem pek iyi degildir. kodun piyasada satıs degeri 700$ - kodun sql dısında xss acıklarıda bulunmaktadır ama pek fazla xss acıkları iÅ
