Home » SQL Injection, TechNews, vulnerability

Bypass security restrictions in DesignerfreeSolutions Newsletter Manager Pro

28 February 2009 16 views No Comment

The vulnerability allows a remote attacker to bypass security restrictions on the target system. The vulnerability exists due to an error in verifying the input data. The vulnerability exists due to an error in verifying the input data. Exploitation of the vulnerability would lead to bypass the authentication mechanism on the target system. Exploitation of the vulnerability would lead to bypass the authentication mechanism on the target system.

Exploit:

Username: ‘or’
Password: ‘or’

Demonstration:

http://www.designerfreesolutions.com/newsletterattach/admin/index.asp

Share and Enjoy:
(No Ratings Yet)
 Loading ...

Leave your response!

Add your comment below, or trackback from your own site. You can also subscribe to these comments via RSS.

Be nice. Keep it clean. Stay on topic. No spam.

You can use these tags:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

This is a Gravatar-enabled weblog. To get your own globally-recognized-avatar, please register at Gravatar.