# Title : Nik Poyesh CMS Bypass Vulnerability 
# Discovered By : MrHoudini
# Dork : intext:"‫ "‫ طراحی سایت :نیک پویش پرداز 
# Remote : Yes 
# Contact Me : Mr.Houdini77@Gmail.com 
# Vendor HomePage : http://www.popaq.ir/
# Date : 27-2-2018


# Exploit : 

-- Install Noredirect

Add The Admin Page URL and Then Change it To : Index.php

-- Admin Page 

http://www.Site.com/[PATH]/Public/panel/login.php

-- Demo 

http://airpass.ir/Public/panel/login.php