====================================================================================================================================
| # Title     : KesionCMS X 1.5.160902 Insecure Settings Vulnerability                                                             |
| # Author    : indoushka                                                                                                          |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 105.0.(32-bit)                                             | 
| # Vendor    : https://www.kesion.com/                                                                                            |  
| # Dork      : Powered by KesionCMS                                                                                               |
====================================================================================================================================

poc :

[+] The vulnerability is about leaving the default settings
    During the installation of the script and using the default username and password

[+] Dorking İn Google Or Other Search Enggine.

[+] Use Payload : user=admin  & pass=admin888 

[+] http://127.0.0.1.com/kesion/Admin/index.asp

Greetings to :=========================================================================================================================
                                                                                                                                      |
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm*                                            |        
                                                                                                                                      |
=======================================================================================================================================