BadHackerZ BHZ Image
Go Back   BadHackerZ > Hacking Arena > Exploit Codes
Reload this Page [0day] phpBB 2.0.23 Session Hijacking Vulnerability
Register FAQ Members List Calendar Arcade Mark Forums Read

Notices
Welcome to the BadHackerz forums.

You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today!

If you have any problems with the registration process or your account login, please contact contact us.

IMG Me Up
Register Now for FREE!
Our records show you have not yet registered to our forums. To sign up for your FREE account INSTANTLY fill out the form below!

Username: Password: Confirm Password: E-Mail: Confirm E-Mail:
Birthday:      
Random Question
  I agree to forum rules 

Reply
 
LinkBack Thread Tools Display Modes
Old 08-04-2008   #1 (permalink)
Studentz
 
Armageddon's Avatar
 
Join Date: Jun 2006

Location: On port u forgot to secure!
Age: 18
Posts: 6,042
Thanks: 54
Thanked 147 Times in 115 Posts
Rep Power: 241 Armageddon has a reputation beyond repute
Armageddon has a reputation beyond repute

Awards Showcase
6K Group 5K Group 4K Group 3K Group 2K group 1K group 
Total Awards: 6

Send a message via Yahoo to Armageddon
Default [0day] phpBB 2.0.23 Session Hijacking Vulnerability
::Information about this vulnerabilty
If a moderator or an admin close a thread in phpBB 2.0.X, the sessionid is sending with GET:

Code:
http://site.tld/phpBB2/modcp.php?t=1&mode=lock&sid=[session]

The admin/moderator are going to be redirected to the thread(with the session). If an attacker has posted an image in his post, he can see the referer and so the session id. And if the attacker have a good day and the admin close the thread, he can use all admin-functions with csrf.
__________________

To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
Armageddon is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote

Reply

Bookmarks

« Previous Thread | Next Thread »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
IceBB <= 1.0-RC9.2 Blind SQL Injection / Session Hijacking Exploit saswata Exploit Codes 0 07-27-2008 04:01 AM
Six killed in Thai south in clashes and hijacking The Boss World News 0 06-01-2008 03:41 PM
Sarah Young / Photo Session waginas89 Videos (Desi and Videsi) 0 05-07-2008 02:42 PM
phpBB 2.0.19 DOS Vulnerability KnightRider Exploit Codes 0 04-09-2008 01:48 PM

These are the 100 most searched terms
Search Cloud
"black and white 2" "megaupload" (intitle:r57shell | intitle:c99shell) +uname acoustic solutions asvm-6271 aishwarya fakes ambit 256 hack ambit250 bad hackerz badgewinners.com badhackerz badhackerz.com c99shell v. 1.0 pre-release build #16 choda chudi cmbus-pkg3-nat-any.cm dhcp sniffer evan poczik evllp.dll free tamil sex stories idm 512 imageshack clone infinite firmware interesting computer facts intext:rapidshare.com/files linkgrabber 3.1 intitle:c99shell v. 1.0 pre-release +uname ipb 2.3.1 exploit j downloader jdownloader.exe logmein pro rapidshare logmein rapidshare mass effect megaupload mass effect rapidshare naughtyamerica.com nod32 rapidshare pinnacle studio 12 rapidshare powered by captain crunch security team ptgui rapidshare rosetta stone rapidshare rosetta stone romanian rosetta stone update rosetta stone v3 rapidshare safe-mode: off (not secure) drwxrwxrwx c99shell shila pandit sigma 1.7 softjtag tamil sex stories tamil sex story tamilsexstories tera patrick rapidshare vbulletin 3.7.0 exploit vbulletin exploit www.badhackerz.com ... powered by Simple Search Cloud

All times are GMT +5.5. The time now is 04:54 AM.

Contact Us - Archive - Privacy Statement - Top

Website Design by How.ToDesignYour.Com
Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.1.0 ©2007, Crawlability, Inc.
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios