Aplikasi Sistem Informasi Kelulusan Admin Weak Password

Published
Credit
Risk
2017.05.29
0N3R1D3R
Medium
CWE
CVE
Local
Remote
N/A
N/A
No
Yes
Dork: intitle:"Aplikasi Sistem Informasi Kelulusan" intext:aplikasi informasi

***************************************************
# Exploit Title: Aplikasi Sistem Informasi Kelulusan Admin Weak Password
# Google Dork: intitle:"Aplikasi Sistem Informasi Kelulusan" intext:aplikasi informasi
# Exploit: /index.php?page=login
# Date: 28/05/2017
# Author: 0N3R1D3R
# Team: Indonesia To World Team
# Facebook: https://www.facebook.com/indonesiatoworld/
# Tested on: Windows 10 x64
***************************************************
[+] Search the dork in Google
[+] Open target
[+] Give target with exploit ( /index.php?page=login )
[+] Enter username and password with
[+] Username: admin
[+] Password: admin
[+] Vuln? You redirected to dashboard
***************************************************
[+] Demo Site
[+] http://sman3balikpapan.sch.id/kte/index.php?page=login
[+] http://sman3balikpapan.sch.id/kte/index.php?page=login
***************************************************
Thanks To Indonesia To World Team
.:: 0N3R1D3R | EBULOBO ::.

References:

My discovery


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com