Beauty Parlour And Saloon Management System 1.1 Insecure Settings

Beauty Parlour And Saloon Management System 1.1 Insecure Settings
Posted Sep 18, 2024
Authored by indoushka

Beauty Parlour and Saloon Management System version 1.1 suffers from an ignored default credential vulnerability.

tags | exploit
SHA-256 | d6660c1c6980ef3268d1a22cf2f264a4cca0ec4b56c1477c7fef4007d4b6424a
====================================================================================================================================
| # Title : Beauty Parlour & Saloon Management System 1.1 Insecure Settings Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 130.0.0 (64 bits) |
| # Vendor : https://phpgurukul.com/beauty-parlour-management-system-using-php-and-mysql/ |
====================================================================================================================================

poc :

[+] Dorking İn Google Or Other Search Enggine.

[+] Insecure Settings : appears to leave a default administrative account in place post installation.

[+] use payload :

Username: admin

Password: Test@123

[+] http://127.0.0.1/bpmsp/admin/dashboard.php

Greetings to :==================================================
jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R |
================================================================

نوشته های مشابه