174 matches found
Acc PHP eMail 1.1 - Cross-Site Request Forgery
Acc PHP eMail 1.1 - Cross-Site Request Forgery /\ == \ /\ \ /\ \ \ \ // End of attack ------------------------------------------------------------------------------------------ EOF...
Acc PHP eMail 1.1 XSRF
view source print? /\ == \ /\ \ /\ \ \ \ // End of attack ------------------------------------------------------------------------------------------ EOF...
Concave Yaya news publishing system WebBasicInfo. asp administrator privileges unauthenticated vulnerability-vulnerability warning-the black bar safety net
Found by:skerwww. zerobox. org The affected version Concave Yaya news publishing system 4. 7ACC version Other version not tested Vulnerability description Concave Yaya news publishing system is an ASP program in conjunction with the ACC and MYSQL CMS system Vulnerability is the path where the...
凹丫丫新闻发布系统WebBasicInfo.asp管理员权限未验证漏洞
凹丫丫新闻发布系统是一款ASP程序结合ACC和MYSQL的CMS系统 漏洞所在路径地址admin/WebBasicInfo.asp 程序员未对该页面写入管理员权限验证代码,可以直接输入代码绕过进入网站后台 进入WebBasicInfo.asp可以对网站名称,网站关键字,网站介绍,底部版权信息进行修改. 可以关闭公告.评论.友情连接功能 凹丫丫新闻发布系统4.7ACC版 其他版本还未测试 等待官方补丁程序或者自己编译管理员权限验证代码...
CVE-2008-6292
Acc Autos 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the 1 usernamecookie to "admin," 2 rightcookie to "1," and 3 idcookie to "1."...
CVE-2008-6294
admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the usernamecookie cookie to "admin."...
Authentication flaw
Acc Autos 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the 1 usernamecookie to "admin," 2 rightcookie to "1," and 3 idcookie to "1."...
CVE-2008-6294
admin/Index.php in Acc Statistics 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the usernamecookie cookie to "admin."...
CVE-2008-6291
CVE-2008-6291 affects Acc PHP eMail 1.1, where a remote attacker can bypass authentication and gain administrative access by setting the NEWSLETTERLOGIN cookie to "admin". The vulnerability stems from insufficient server-side validation of the login cookie, enabling privilege escalation without v...
CVE-2008-6292
Acc Autos 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the 1 usernamecookie to "admin," 2 rightcookie to "1," and 3 idcookie to "1."...
CVE-2008-6293
admin/Index.php in Acc Real Estate 4.0 allows remote attackers to bypass authentication and gain administrative access by setting the usernamecookie to "admin."...
CVE-2008-6294
CVE-2008-6294 affects Acc Statistics 1.1, where admin/Index.php permits remote authentication bypass by setting the username_cookie cookie to "admin", enabling administrative access. The CVSS base score is 7.5 (HIGH) with network access and low complexity. No remediation details are provided in t...
accphpemail-insecure.txt
/ / \ / / / / / / / / / / / /\ / / / / / / / / / / / / / / \ / // // / / / / // // / // / / / / / / / // / / / / / / //, / // //,/// // // /,// // // // Discovered by : Hakxer Type Gap :Acc PHP eMail v1.1 Insecure Cookie Handling Script : http://www.accscripts.com/mailinglist/ Greetz :...
accautos-insecure.txt
-==========================================- Autore: x0r - Road Crew - Evolution Team Cms: Acc Autos v4.0 Bug: Insecure Cookie Handling Site: http://pro7.altervista.org/v2/ -==========================================- Exploit: +javascript:document.cookie="usernamecookie=admin";...
Acc Statistics 1.1Insecure Cookie Handling Vulnerability
No description provided by source. / / \ / / / / / / / / / / / /\ / / / / / / / / / / / / / / \ / // // / / / / // // / // / / / / / / / // / / / / / / //, / // //,/// // // /,// // // // Discovered by : Hakxer Type Gap : AccStatistics v1.1 Insecure Cookie Handling Script :...
accrealestate-insecure.txt
/ / \ / / / / / / / / / / / /\ / / / / / / / / / / / / / / \ / // // / / / / // // / // / / / / / / / // / / / / / / //, / // //,/// // // /,// // // // Discovered by : Hakxer Type Gap : Acc Real Estate v4.0 Insecure Cookie Handling Script :...
Acc Real Estate 4.0 Insecure Cookie Handling Vulnerability
No description provided by source. / / \ / / / / / / / / / / / /\ / / / / / / / / / / / / / / \ / // // / / / / // // / // / / / / / / / // / / / / / / //, / // //,/// // // /,// // // // Discovered by : Hakxer Type Gap : Acc Real Estate v4.0 Insecure Cookie Handling Script :...
Acc PHP eMail 1.1 - Insecure Cookie Handling
Acc PHP eMail 1.1 - Insecure Cookie Handling / / \ / / / / / / / / / / / /\ / / / / / / / / / / / / / / \ / // // / / / / // // / // / / / / / / / // / / / / / / //, / // //,/// // // /,// // // // Discovered by : Hakxer Type Gap :Acc PHP eMail v1.1 Insecure Cookie Handling Script :...
Acc Statistics 1.1Insecure Cookie Handling Vulnerability
Exploit for unknown platform in category web applications ======================================================== Acc Statistics 1.1Insecure Cookie Handling Vulnerability ======================================================== Discovered by : Hakxer Type Gap : AccStatistics v1.1 Insecure Cookie...
Acc PHP eMail 1.1 Insecure Cookie Handling Vulnerability
Exploit for unknown platform in category web applications ======================================================== Acc PHP eMail 1.1 Insecure Cookie Handling Vulnerability ======================================================== Discovered by : Hakxer Type Gap :Acc PHP eMail v1.1 Insecure Cookie...