Re: BellaBiblio Admin Login Bypass

看板Bugtraq作者時間18年前 (2007/12/08 00:17), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串2/2 (看更多)
: BellaBiblio Admin Login Bypass : : SCRIPT: BellaBiblio : : DOWNLOAD: http://www.jemjabella.co.uk/scripts/BellaBiblio.zip : : AUTHOR: ilker kandemir <ilkerkandemir[at]mynet.com> : : Bug in;(admin.php) : if (isset($_COOKIE['bellabiblio'])) { : if ($_COOKIE['bellabiblio'] == md5($admin_name.$admin_pass.$secret)) { : if (isset($_GET['ap'])) $page = $_GET['ap']; else $page = ""; : : EXPLOIT: : : Set your cookie: bellabiblio=administrator http:/site.com/admin.php : And you have full admin access As discussed on VIM, this and several of your other postings are all incorrect or have caveats for them to work. http://attrition.org/pipermail/vim/2007-July/001733.html http://attrition.org/pipermail/vim/2007-July/001736.html http://attrition.org/pipermail/vim/2007-July/001745.html Regarding your phpWebFileManager posting, also false: http://attrition.org/pipermail/vim/2007-July/001744.html
更多 jericho. 的文章
文章代碼(AID): #17MN8s00 (Bugtraq)
更多 jericho. 的文章
文章代碼(AID): #17MN8s00 (Bugtraq)