Lucene search
internetphotoshow-cookie.txt
Internet Photoshow SE insecure cookie handling, allows remote attacker to gain admin access by crafting a cookie. Exploit allows access to /admin.php and potential site shell.
Show more
`--==+================================================================================+==--
--==+ Internet Photoshow (Special Edition) Insecure Cookie Handling +==--
--==+================================================================================+==--
Discovered By: t0pP8uZz
Discovered On: 14 MAY 2008
Script Download: http://www.thomas-voecking.de/downloads/ps_se_fire.zip
DORK: "Internet Photoshow - Slideshow"
Vendor Has Not Been Notified!
DESCRIPTION:
Internet Photoshow SE, suffers from insecure cookie handling, This allows the remote attacker to gain
arbitrary access to the admin area by crafting a admin cookie.
the following javascript code will craft a admin cookie, and make it available to access /admin.php
Exploit:
javascript:document.cookie = "login_admin=true; path=/";
NOTE/TIP:
visit the affected domain and paste the above javascript into your browser, once excuted visit the
affected sites "/admin.php" and you will have access to admin.
its also possible to shell the site by uploading your shell through the file upload.
GREETZ: milw0rm.com, h4ck-y0u.org, CipherCrew !
peace, t0pP8uZz
--==+================================================================================+==--
--==+ Internet Photoshow (Special Edition) Insecure Cookie Handling +==--
--==+================================================================================+==--
`
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo15 May 2008 00:00Current
7.4High risk
Vulners AI Score7.4