[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : TCPDB 3.8 Arbitrary Add Admin Account Vulnerability
# Published : 2009-05-07
# Author : Mr.tro0oqy
# Previous Title : webSPELL <= 4.2.0e (page) Remote Blind SQL Injection Exploit
# Next Title : T-Dreams Job Career Package 3.0 Insecure Cookie Handling Vulnerability


=======================================================
+++++++++++++++++++ information +++++++++++++++++++++++
=======================================================
[+] Script :TCPDB version 3.8 Add Admin Exploit

[+] Download : http://www.tcpdb.com/modules.php?name=Downloads&d_op=viewdownload&cid=2

[+] Found by : Mr.tro0oqy
   
[+] C0ntact : t.4@windowslive.com <Yemeni ana>
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
step 1 : go to 

http://localhost/path/user


step 2 : add admin


=======================================================
++++++++++++++++++++++ Demo +++++++++++++++++++++++++
=======================================================


http://www.tcpdb.com/demo/user

=======================================================
++++++++++++++++++++++ Greetz +++++++++++++++++++++++++
=======================================================
ThE g0bL!N - spyboy - red virus - virus_hima

all my Friends

# www.Syue.com [2009-05-07]