Simple Customer 1.2 (Auth Bypass) SQL Injection Vulnerability



EDB-ID: 7146 CVE: 2008-6326OSVDB-ID: 49916
Author: d3b4gPublished: 2008-11-17Verified: Verified
Exploit Code:   DownloadVulnerable App:   N/A

Rating

(0.0)
Prev Home Next
###############################################################################################
[-] Simple Customer  1.2 Remort (Auth bypass) SQL Injection Vulnerability
[-] Discovered By : d3b4g
[-] Greetz : All my freind
################################################################################################
 Go to www.target.com[path]login.php
 Use following information to bypass login.
 Write any email Address as email address.It must to be in email format like somethin@something.com
 For exapmple letmein@inbox.com
 For password use ' or ' 1=1
  Live demo [at] http://www.simplecustomer.com/demo/login.php
--------------------------------------------
--------------------------------------------
# milw0rm.com [2008-11-17]






Comments

No comments so far