Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Re: BellaBook Admin Bypass/Remote Code Execution

Re: BellaBook Admin Bypass/Remote Code Execution

From: <jem_at_jemjabella.co.uk>
Date: 1 Aug 2007 17:36:47 -0000

('binary' encoding is not supported, stored as-is) As with your so-called bypass of BellaBiblio, this is not actually correct.

You state that with the username you can gain access to the login page - but you seem to have missed the fact that the password and totally random salt are needed too?

Furthermore, you're using a script designed to bypass pheap login features with a few modifications - that does nothing to my scripts.
Received on Aug 01 2007

This message: [ Message body ]
Next message: bugtraq_at_morph3us.org: "Re: Re: [BuHa-Security] Winamp 5.35 (Infinite) M3U File Inclusion DoS Vulnerability"
Previous message: Foresight Linux Essential Announcement Service: "FLEA-2007-0038-1 gimp"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]