Lucene search
SecurityvulnsSECURITYVULNS:DOC:18664HistoryDec 16, 2007 - 12:00 a.m.
Adult Script Unauthorized Administrative Access Exploit
2007-12-1600:00:00
vulners.com
150
Adult Script Unauthorized Administrative Access Exploit
Exploit Coded By Liz0ziM From BiyoSecurityTeam
Greetz My all friend and BiyoSecurityTeam User…
Software site: http://www.adultscript.net/
Demo: http://www.adultscript.net/demo/
Vulnerable code in admin/administrator.php near lines 5-8
( ($_SESSION['adminid']=="") && ($_SESSION['admintype'] !=1))
{
header("Location: logout.php"); // Bypass Me
}
Dork:
inurl:submit-user-link.html
inurl:video-listing-cat
inurl:hosted-videos
inurlorn-listing-cat
"Powered By AdultScript.NET"
"Copyright 2007 [IAG].AdultScript.v1.5.Nulled"
EXPLOİT URL : www.r57.li/adult.php
EXPLOİT TXT : www.r57.li/adult.txt