Home
Consulting
Advisories
Software
Articles
Contact

Simple Web Content Management System 1.21 Authentication Bypass/SQL Injection

Legacy Advisories

Description

An Authentication bypass/SQL injection vulnerability in ACollab 1.2 can be exploited to retreive a list of usernames and passwords.

Proof Of Concept

http://localhost/simplecms/admin/item_delete.php?id=0 or 1=1


Copyright © 2018 AutoSec Tools LLC