[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Simple Customer 1.2 (Auth Bypass) SQL Injection Vulnerability
# Published : 2008-11-17
# Author : d3b4g
# Previous Title : Jadu Galaxies (categoryID) Blind SQL Injection Vulnerability
# Next Title : SaturnCMS (view) Blind SQL Injection Vulnerability


###############################################################################################
[-] Simple Customer  1.2 Remort (Auth bypass) SQL Injection Vulnerability
[-] Discovered By : d3b4g        
[-] Greetz : All my freind         
################################################################################################
 Go to www.target.com[path]login.php

 Use following information to bypass login.

 Write any email Address as email address.It must to be in email format like somethin@something.com

 For exapmple letmein@inbox.com

 For password use ' or ' 1=1

  Live demo [at] http://www.simplecustomer.com/demo/login.php
--------------------------------------------
--------------------------------------------

# www.Syue.com [2008-11-17]