[D] phpBB Forums -- Gap to make sure Cookies [z]

2010-12-21 13:35:47
Inviato da: kedans

# Name : [D] phpBB Forums -- Gap to make sure Cookies [z]

# Date : 21/11/2010

# Author : KedAns-Dz < ked-h (at) hotmail (dot) com >

# Team : [D] HaCkerS-StreeT-Team [z]

# special thanks to : BadR0 (+) Nor0 FouinY

# greetz to : XoreR (+) Fox-Dz (+) Dr.Ride (+) Islampard (+) Hani Nin0 (+)

// Zaki.ENG (+) Masinhou-Dz (+) MaTmour13

Allahou AkbaR -- 1 2 3 ViVa l'Algerie

:::::::::::::::::::::::::::::::::::::::(0x1a)::::::::::::::::::::::::::::::::::::::::

Gap to make sure Cookies

You discover a gap in the phpBB Forums New

Gap is an error during receive to make sure files cookies

Private Login to your administration panel

Exploitation :

After targeting by targeting a site, you members of the Administration or the Director himself

And then stealing a file cookies Using any method

For example I tried in the forum my friend

Entered the apparatus f4r : Metasploit 3.4.1

You know the rest ... And stole a file cookies Tags

And then entered the administration panel using latest this link :

http://4nahdha.com/admin/login.forum?redirect=/admin

Process succeeded

::::::::::::::::::::::::::::::::::::::(0x2a):::::::::::::::::::::::::::::::::::::::::::

[D] HaCkerS-StreeT-Team [Z]

>> KedAns-Dz (+) BadR0 (+) Dr.Ride (+) XoreR (+) Fox-Dz <<

> Red1One (+) Islampard (+) NoR0 FouinY (+) Hani Nin0 (+) Masinhou-Dz <

:::::::::::::::::::::::::::::: By KedAns DZ :::::::::::::::::::::::::::::::::::::::::::

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.