[D] phpBB Forums -- Gap to make sure Cookies [z]
2010-12-21 13:35:47Inviato da: kedans
# Name : [D] phpBB Forums -- Gap to make sure Cookies [z]
# Date : 21/11/2010
# Author : KedAns-Dz < ked-h (at) hotmail (dot) com >
# Team : [D] HaCkerS-StreeT-Team [z]
# special thanks to : BadR0 (+) Nor0 FouinY
# greetz to : XoreR (+) Fox-Dz (+) Dr.Ride (+) Islampard (+) Hani Nin0 (+)
// Zaki.ENG (+) Masinhou-Dz (+) MaTmour13
Allahou AkbaR -- 1 2 3 ViVa l'Algerie
:::::::::::::::::::::::::::::::::::::::(0x1a)::::::::::::::::::::::::::::::::::::::::
Gap to make sure Cookies
You discover a gap in the phpBB Forums New
Gap is an error during receive to make sure files cookies
Private Login to your administration panel
Exploitation :
After targeting by targeting a site, you members of the Administration or the Director himself
And then stealing a file cookies Using any method
For example I tried in the forum my friend
Entered the apparatus f4r : Metasploit 3.4.1
You know the rest ... And stole a file cookies Tags
And then entered the administration panel using latest this link :
http://4nahdha.com/admin/login.forum?redirect=/admin
Process succeeded
::::::::::::::::::::::::::::::::::::::(0x2a):::::::::::::::::::::::::::::::::::::::::::
[D] HaCkerS-StreeT-Team [Z]
>> KedAns-Dz (+) BadR0 (+) Dr.Ride (+) XoreR (+) Fox-Dz <<
> Red1One (+) Islampard (+) NoR0 FouinY (+) Hani Nin0 (+) Masinhou-Dz <
:::::::::::::::::::::::::::::: By KedAns DZ :::::::::::::::::::::::::::::::::::::::::::
Fixes
No fixesPer poter inviare un fix è necessario essere utenti registrati.