Droppy - Online File Sharing - Admin Bypass

2016.08.18
Risk: Medium
Local: No
Remote: Yes
CVE: 13/08/2016
CWE: N/A

------------------------------------------------------------------------------ # Exploit Title: Droppy - Online File Sharing - Admin Bypass ------------------------------------------------------------------------------ # Dork: intext:"Droppy" # Date: 13/08/2016 # Exploit Author: AL.MaX HaCkEr # Vendor Homepage: http://proxibolt.com/ # Software Link: https://codecanyon.net/item/droppy-online-file-sharing/10575317 # Category: webapps # Version: All # Tested on: Windows 10 , Mozilla Firefox --------------------------------------------------------------------------------- # Description # 1- Download NoRedirect On addons Mozilla Firefox # 2- Put Website in NoRedirect Tool Addons Mozilla Firefox # 3- http://example.com/admin/login.php # 4- After Put Website Go to http://example.com/admin/index.php Will Login To Admin ------------------------------------------------------------------------------------ # Demo: http://droppy.com.au/admin/login.php # Demo: http://www.ilenko.com/admin/login.php # Demo: http://ensinp.com/admin/login.php # demo: http://droppy.proxibolt.com/admin/login.php -------------------------------------------------------------------------------------- # Greets To : All Sudanese HaCkErS --------------------------------------------------------------------------------------


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top