KMSoft GB - SQL Injection

Author: SONIC
type: webapps
platform: asp
port: 
date_added: 2010-07-08 
date_updated: 2010-07-08 
verified: 0 
codes: CVE-2010-4987;OSVDB-76976 
tags: 
aliases:  
screenshot_url:  
application_url: 

==============================================================
KMSoft GB --SQl iNjection  Vulnerabilty
==============================================================


Name : KMSoft GB --SQl iNjection  Vulnerabilty
Date : july 9,2010
Critical Level     :VERY HIGH
vendor URL :   http://www.kmsoft.org


Author : ..::[ SONiC ]::.. aka ~the_pshyco~ <sonicdefence[at]gmail.com>

special thanks to : Sid3^effects,r0073r (inj3ct0r.com),L0rd CruSad3r,M4n0j,Bunny,Nishi,MA1201,RJ,D3aD F0x

greetz to :www.topsecure.net ,All ICW members , iNj3cT0r.com, www.andhrahackers.com

special Shoutz : my Girl Frnd [H*****]


###################################
I'm SONiC member from Inj3ct0r Team
###################################
Description:

* Really easy script setup, using and modifications. * Turning Number (CAPTCHA). * Bad- Words Filter. * Web based admin functions (active message / deactive message / special message (ON- OFF) | view / add / edit / delete records)


#######################################################################################################
Xploit :SQL injection  Vulnerabilty

DEMO URL  http://www.site.org/demo/KmsoftGB/default.asp?p=2[sqli]



###############################################################################################################

# ..::[ SONiC ]::.. aka the_pshyco