ADN Forum <= 1.0b Insecure Cookie Handling Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- adnforum = 1.0b / Insecure Cookie Handling Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: adnforum $ Version: = 1.0b $ File affected: index.php $ Download:...

adnforum &lt;= 1.0b / Insecure Cookie Handling Vulnerability

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- adnforum = 1.0b / Insecure Cookie Handling Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: adnforum $ Version: = 1.0b $ File affected: index.php $ Download: http://sourceforge.net/projects/adnforum/ Found...

ADN Forum &lt;= 1.0b Insecure Cookie Handling Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- adnforum = 1.0b / Insecure Cookie Handling Vulnerability -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- $ Program: adnforum $ Version: = 1.0b $ File affected: index.php $ Download:...

adnforums-insecure.txt

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- adnforum eNYe-Sec - www.enye-sec.org Cookie is base64 based and the ascii format used is: user:23ed4e45887ad4311ff654bd4aab6540:user:0 user:md5 pass:user:0 Programmer forgot to check the pass and only use the nick to autenticate the user...

adnforums-sql.txt

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- adnforum eNYe-Sec - www.enye-sec.org Code: 2: if !isset$uid 3: echo"error"; 4: exit; 5: else 6: include "header.php"; 7: $result = mysqlquery"SELECT FROM ".$prefijo."usuarios where id = '$uid'", $conexion; 8: $row = mysqlfetchrow$result;...

EV0015.txt

New eVuln Advisory: ADNForum Multiple Vulnerabilities --------------------Summary---------------- Vendor: Agustin Dondo Vendor's Web Site: http://www.agustin.co.nr/ Software: ADNForum Sowtware's Web Site: http://adnforum.sourceforge.net/ Versions: 1.0b Critical Level: Moderate Type: Multiple...

[eVuln] ADNForum Multiple Vulnerabilities

New eVuln Advisory: ADNForum Multiple Vulnerabilities --------------------Summary---------------- Vendor: Agustin Dondo Vendor's Web Site: http://www.agustin.co.nr/ Software: ADNForum Sowtware's Web Site: http://adnforum.sourceforge.net/ Versions: 1.0b Critical Level: Moderate Type: Multiple...