This exploit demonstrates an insecure cookie handling vulnerability in MLFFAT 2.1, allowing an attacker to set a malicious cookie to bypass authentication and gain admin access. The PoC uses a base64-encoded payload in the cookie value to achieve this.
Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target:MLFFAT 2.1
No auth needed
Prerequisites:Access to the target application's login page or a way to execute JavaScript in the victim's browser