Global Real Estate Agent Site Authentication Bypass

Global Real Estate Agent Site Authentication Bypass: Posted Jun 12, 2010; Authored by L0rd CrusAd3r; Global Real Estate Agent suffers from bypass and remote SQL injection vulnerabilities.; tags | exploit, remote, vulnerability, sql injection; SHA-256 | 8f4b916756c260adcc0fed5a4950dbd1e022b9ef69bffc1904c9bc04c5a6a051; Download | Favorite | View

Global Real Estate Agent Site Authentication Bypass

Author: L0rd CrusAd3r aka VSN [crusader_hmg@yahoo.com]
Exploit Title: GREEZLE - Global Real Estate Agent Site Authentication ByPass
Published: 2010-06-09
Vendor url:https://www.ifstudio.org/greezla/
Price:99$
Greetz to:Sid3^effects, MaYur, M4n0j, Dark Blue™®, S1ayer and to all ICW members
#############################################################################################################################################################################

                                                                                                         GREEZLE - Global Real Estate Agent Site Authentication ByPass

#############################################################################################################################################################################

Description: 

GREEZLE is an easy in use site which allows to sell online any real estate objects. 
Visitors are able to browse, search and view properties.
 It allows you to create agent accounts, who can also sell any real estate objects at a fee you charge.
###############################################################################################################################################################################

Vulnerability:

*Authentication Bypass found
 
The Provided Script as Sqli Vulnerability in Admin Login page
 
DEMO URL : https://properties.ifstudio.org/en/login
 
Use the string a' or '1'='1 for Username and Password to gain access

-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
# 0day no more #
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


################################################################################################################################################################################

Top Authors In Last 30 Days

Red Hat 239 files
Ubuntu 62 files
Debian 23 files
LiquidWorm 20 files
Apple 9 files
indoushka 5 files
Gentoo 5 files
Google Security Research 4 files
Chokri Hammedi 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,862)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,265)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,976)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

Global Real Estate Agent Site Authentication Bypass

Global Real Estate Agent Site Authentication Bypass

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Global Real Estate Agent Site Authentication Bypass

Share This

Global Real Estate Agent Site Authentication Bypass

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems