Exploits / Vulnerability Discovered : 2020-10-28 |
Type : webapps |
Platform : php
This exploit / vulnerability Cse bookstore 1.0 authentication bypass is for educational purposes only and if it is used you will do on your own risk!
CSE Bookstore is vulnerable to an authentication bypass vulnerability on the admin panel.
By default the admin panel is located at /admin.php and the administrator interface can be accessed by unauthorized users exploiting the SQL injection vulnerability.