Mndajans Script suffers from a remote SQL injection vulnerability.
7eec4c73453a21cd4e59a09e7b132c26d5ca6007d5bcc1f4a0c2f16dfd2714f8
# Exploit Title: Mndajans Script SQL Injection
# Date: 29.10.2011 - 16.13
# Author: Mr.PaPaRoSSe
# Tested On: BackTrack 5 - Win7
# Platform: Php
-------------------------------------------------------------
Scripts are mndbilgisayar
-------------------------------
default user : mndajans
default pass : servis
Admin panel : /admin/
Default User & Pass & Admin demo
http://alpdizayn.com.tr/admin/
--------------------------------
MND Kontrol PANEL
SQL Ýnjection
UrunDetay&id=4' SQL
-------------------------------------------------------------
Contact: paparosse.blogspot.com
Greetz: Http://DarkDevilz.in/
-------------------------------------------------------------
3spi0n - ALEXTRAX - sanTiq0
Deathless - ZyX - Tarxes
53rh4+ - bLaCk_uMo - PeRs
syntaX - Mavi_Karalik - DarkCOD3R
x-Leader - Cyborg - Y2J
[And DD'z Family]
[DarkDevilz - Defence And Destruction Group'z - TURKEY]