Description - Authentication Bypass in phpstatus
SQL Injection found in phpstatus script.
Vulnerable script: check.php
There are two ways to bypass authentication:
a) SQL Injection
Variable $HTTP_POST_VARS[username] isn't properly sanitized before being used in a SQL query. This can be used to make any SQL query by injecting arbitrary SQL code.
Condition: magic_quotes_gpc - off
b) Cookie based authentication
check.php script dont make password comparisson when identifying user by cookies
Multiple Cross-Site Scripting & Multiple SQL Injections vulnerabilities are present in administrator's control panel.
Order Source Code Review
You may order PHP code review of a site made by eVuln team.The work will be done by specialists in website security.