CMSimple – Default Administrator Credentials

Exploit Database
12 阅读

作者： Govind Singh

日期： 2014-07-28
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/39271/

source: https://www.securityfocus.com/bid/68961/info

CMSimple is prone to multiple security vulnerabilities including:

1. Multiple arbitrary PHP code-execution vulnerabilities
2. A weak authentication security-bypass vulnerability
3. Multiple security vulnerabilities

An attacker can exploit these issues to bypass certain security restrictions, perform unauthorized actions and execute arbitrary script code in the context of the affected application. This may aid in further attacks. 

Any user can login just with simple password "test" which is the default cms password & there own vendor site is vulnerable with weak authentication 
just login without user name & also with default password "test" here "http://cmsimple.org/2author/?Welcome_to_CMSimple&login"

last Exploits
CMSimple – Default Administrator Credentials的更多信息

Geeklog 1.8.1 – ‘index.php’ SQL Injection：
Servisnet Tessa – Add sysAdmin User (Unauthenticated) (Metasploit)：
Uiga Business Portal – ‘index.php’ SQL Injection：
WordPress Plugin Welcart e-Commerce 2.0.0 – ‘search[order_column][0]’ SQL injection：
Joomla! Component joomlacontenteditor 2.0.10 – Multiple Vulnerabilities：
WordPress Plugin Video Gallery 2.5 – Multiple Vulnerabilities：
dotProject 2.1.3 – Multiple SQL Injections / HTML Injection Vulnerabilities：
DIGIT CMS 1.0.7 – Cross-Site Scripting / SQL Injection：