Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

BoastMachine v3.0 platinum - Session İd Hacking

From: "vagrant Pest" <kernel-32 () hotmail com>
Date: Tue, 22 May 2007 09:01:27 +0000
Vagrant - E-hack.org (05.22.2007)

BoastMachine v3.0 platinum - Session İd Hacking
After the login into the site which alllows new user registration. Site user's data which is entered to change the topic, can be changed by another user, and that is a security hole because of ID interchangeability in URL address space.
If the changed topic belongs to the admin it doedn't affect the free login and site user has an authority to make changes and cop the topics. 

------- >>>

Vulnerable;

http://www.xxx.com/login.php

http://www.xxx.com/user.php?action=list_posts

Edit posts;
http://www.e-hack.org/user.php?action=list_posts

Post title edit;
http://www.xxx.com/user.php?action=edit_post&blog=1&id=(155) = (İd)

New İd;
http://www.xxx.com/user.php?action=edit_post&blog=1&id=(154) = (İd)


Credits : Vagrant
Contact : kernel-32 () hotmail com
Site : www.e-hack.org

_________________________________________________________________
Siz de iletişimin evrimine katılın! http://www.communicationevolved.com/tr-tr/
Previous By Date Next
Previous By Thread Next

Current thread: