Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
How do you completely compromise a machine given a text box or badly validated input box? This is a place to talk about code issues (PHP includes, null byte injection, backticks, pipe, etc...) as well as how to properly construct an SQL injection attack. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Mysql Back-end
Posted by: Nerder
Date: May 21, 2012 07:26PM

http://www.costruttori.it/admin/


when i put a ' this page return:

Microsoft OLE DB Provider for ODBC Drivers error '80040e14'

[MySQL][ODBC 3.51 Driver][mysqld-5.0.45-community-nt]You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''''' at line 1

/admin/index.asp, line 23



its' vulnerable?

Options: ReplyQuote
Re: Mysql Back-end
Posted by: firestorm
Date: June 07, 2012 04:29PM

Yes it is. Infact I just got access to the admin panel !!!!
Thanks for sharing :)

In case of asap, reach me by mail : syed@syedafzal.in

Options: ReplyQuote


Sorry, only registered users may post in this forum.