Headline
Teacher Subject Allocation Management System 1.0 Insecure Settings
Teacher Subject Allocation Management System version 1.0 suffers from an ignored default credential vulnerability.
====================================================================================================================================| # Title : Teacher Subject Allocation Management System 1.0 Insecure Settings Vulnerability || # Author : indoushka || # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 130.0.0 (64 bits) || # Vendor : https://phpgurukul.com/teacher-subject-allocation-system-using-php-and-mysql/ |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Insecure Settings : appears to leave a default administrative account in place post installation.[+] use payload : Username: admin Password: Test@123[+] http://127.0.0.1/tsas/admin/login.phpGreetings to :=====================================================================================jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R * Malvuln (John Page aka hyp3rlinx)|===================================================================================================