Gatesafe Docusafe 4.1.0 SQL Injection
Posted on 08 December 2010
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 3 3 3 _ __ __ ________ __ __ 3 7 /' /'__` /'__` /\_____ / / 7 1 /\_, /\_L /\_L \/___//'/' \_ \____ 1 3 /_/ /_/_\_<_/_/_\_<_ /' /' /'_` '__` 3 3 / L / L /' /' / L L 3 7 \_ \____/ \____//\_/ \___,_ \_,__/ 7 1 /_//___/ /___/ // /__,_ //___/ 1 3 >> Exploit database separated by exploit 3 3 type (local, remote, DoS, etc.) 3 7 7 1 [+] Site : 1337db.com 1 3 [+] Support e-mail : submit[at]1337db.com 3 3 3 7 ########################################## 7 1 I'm R4dc0re 1337 Member from 1337 DataBase 1 3 ########################################## 3 3 3 7-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-7 # Author: R4dc0re # Exploit Title: Gatesoft Docusafe Sql Injection Vulnerablity # Date: 05-12-2010 # Vendor or Software Link:http://gatesoft.no/ # Category:WebApp # Demo Link:http://demods.gartha.net/ # Version:4.1.0 # Price:3500$ # Contact: R4dc0re@yahoo.fr # Website: www.1337db.com # Greetings to: R0073r(1337db.com), L0rd CrusAd3r,Sid3^effects and to rest of the 1337db members Submit Your Exploit at Submit@1337db.com ######################################################################################## [Product Detail] Product Document Management (PDM) system special made for electronics and or mechanical industry. DocuSafe is used by large manufacturers in several countries. Code: ASP 2.0 & VBScript [Vulnerability] SQL Injection: http://demods.gartha.net/ECO.asp?ECO_ID=[Code] ########################################################################################
