Full title: Dreambox WebInfo Authentication Bypass Vulnerability 
Category: web applications
Platform: php
This exploit is caused by systems files , they are writable , so i check them and i was able to cat or download the /etc/shadow user file , and bypass auth by fetching the user and cracking password.

# 0day.today @ http://0day.today/