This exploit demonstrates an SQL injection vulnerability in 'My Click Counter' version 1.0, allowing an attacker to bypass admin authentication by submitting a crafted input (' or ''=') in the username and password fields.
Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target:My Click Counter 1.0
No auth needed
Prerequisites:Access to the admin login page of the target application