AMSS++ 4.7 Backdoor Account

AMSS++ version 4.7 appears to have a backdoor account in it.

MD5 | c317be1a3b697de0d9b6338636b42d0d

====================================================================================================================================
| # Title     : AMSS++ v 4.7 Backdoor account Vulnerability                                                                        |
| # Author    : indoushka                                                                                                          |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 65.0(32-bit)                                               | 
| # Vendor    : http://amssplus.ubn4.go.th/amssplus_download/amssplus_4_31_install.rar                                             |  
| # Dork      : แนะนำให้ใช้บราวเซอร์ Google Chrome "AMSS++"                                                                                   |
====================================================================================================================================

poc :


[+] Dorking İn Google Or Other Search Enggine.

[+] Use Login : admin & 1234

[+] http://127.0.0.1/innoobec/index.php


Greetings to :=========================================================================================================================
                                                                                                                                      |
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm*                                            |        
                                                                                                                                      |
=======================================================================================================================================

Source: packetstormsecurity.com

Exploit Collector

Search Exploit

AMSS++ 4.7 Backdoor Account