Zindizayn Okul Web Sistemi v1.0 Sql VulnZ.

2007.06.15

Credit: g0rk3m-31

Risk: Medium

Local: No

Remote: Yes

CVE: CVE-2007-3178

CWE: CWE-Other

CVSS Base Score: 7.5/10

Impact Subscore: 6.4/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

# Script's Name : Zindizayn Okul Web Sistemi v1.0 (tr)
# Script's MainPage : http://www.okulwebsistemi.com
# Risk : Medium
# Found By : ShaFuck31
# Thanks : | The RD | DesquneR | SaboTaqe | ST@ReXT | BLaSTER |
# Vulnerable file : mezungiris.asp & ogretmenkontrol.asp
#Vuln :
http://www.victim.com/ScriptPath/mezungiris.asp
http://www.victim.com/ScriptPath/ogretmenkontrol.asp
*** You Can Use 'or' For id & pass ;)
#Contact: g0rk3m-31 (at) HoTMaiL (dot) CoM [not add me ;)]
# I Cry When The Angels Will Deserve To Die ...

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Zindizayn Okul Web Sistemi v1.0 Sql VulnZ.

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.