Authentication Bypass in miniBloggie
- Authentication Bypass in miniBloggie
- Last Update
- 0 n/a
- Risk Level
- SQL Injection
- myWebland (http://mywebland.neopages.net/)
- Vulnerable Software
- Not available
- Discovered by
- Aliaksandr Hartsuyeu (eVuln.com)
SQL Injection found in miniBloggie script.Vulnerable scripts:
Username and password isn't properly sanitized before being used in a SQL query. This can be used to log in as administrator without password.
Condition: magic_quotes_gpc: off
User Name: ' or 1/*
Password: ' or 1/*
Solution for "Authentication Bypass in miniBloggie" is not available. Check myWebland website for updates.
Order Source Code Audit
Protect against hacker attacks by PHP code testing of your site or web application done by eVuln team.The work will be done by experts in web security.