Version: 2.4.7 Security Level: 0 (Hosed) Hints: Disabled (0 - I try harder) Not Logged In
When I put a ' (the single apostrophe, on the same key as the ") in the username or password field on the http://localhost/mutillidae/index.php?page=login.php page, I get a php error: Fatal error: Call to undefined method Exception::getPrevious() in /Applications/MAMP/htdocs/mutillidae/classes/CustomErrorHandler.php on line 139
However, submitting valid SQLi like this one, works without error and I'm admin: ' or 1=1#
I'm happy to answer any questions about my setup or usage or if you need screenshots.
Thank you Jeremy, I'm looking to use Mutillidae as my platform at an OWASP (Rhode Island) meeting Monday night.