Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
BugTraq
BellaBiblio Admin Login Bypass Jul 30 2007 07:29PM
ilkerkandemir mynet com (1 replies)
Re: BellaBiblio Admin Login Bypass Dec 07 2007 02:23AM
security curmudgeon (jericho attrition org)

: BellaBiblio Admin Login Bypass
:
: SCRIPT: BellaBiblio
:
: DOWNLOAD: http://www.jemjabella.co.uk/scripts/BellaBiblio.zip
:
: AUTHOR: ilker kandemir <ilkerkandemir[at]mynet.com>
:
: Bug in;(admin.php)
: if (isset($_COOKIE['bellabiblio'])) {
: if ($_COOKIE['bellabiblio'] == md5($admin_name.$admin_pass.$secret)) {
: if (isset($_GET['ap'])) $page = $_GET['ap']; else $page = "";
:
: EXPLOIT:
:
: Set your cookie: bellabiblio=administrator http:/site.com/admin.php
: And you have full admin access

As discussed on VIM, this and several of your other postings are all
incorrect or have caveats for them to work.

http://attrition.org/pipermail/vim/2007-July/001733.html
http://attrition.org/pipermail/vim/2007-July/001736.html
http://attrition.org/pipermail/vim/2007-July/001745.html

Regarding your phpWebFileManager posting, also false:

http://attrition.org/pipermail/vim/2007-July/001744.html

[ reply ]




 

Privacy Statement
Copyright 2009, SecurityFocus