Simple Customer 1.2 (Auth Bypass) SQL Injection Vulnerability
Published:2008-11-17
Exploit:
[www.sebug.net]
The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!
The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!
############################################################################################### [-] Simple Customer 1.2 Remort (Auth bypass) SQL Injection Vulnerability [-] Discovered By : d3b4g [-] Greetz : All my freind ################################################################################################ Go to www.target.com[path]login.php Use following information to bypass login. Write any email Address as email address.It must to be in email format like somethin@something.com For exapmple letmein@inbox.com For password use ' or ' 1=1 Live demo [at] http://www.simplecustomer.com/demo/login.php -------------------------------------------- --------------------------------------------
// Sebug.net [ 2008-11-18 ]