The File Manager this web host offers uses a token to track the session. However, this token is sent to the server using a get request, something like:<br><pre>http://fw58.members.freewebs.com/Members/fileManager.jsp?token=xxxxx</pre><br>What's even worse, when you click logout, the token isn't destroyed until it times out.<br>So:<br>- If you just click logout and go off somewhere else, your friend can still access it from the browsing history.<br>- If you use a tracker on your page, something like <a href="%5C"><img alt="\"link\"" src="%5C">eXTReMe Tracking</a>, and accidently access your page from the File Manager, the referer will get logged and a visitor to your site might click on that link to pwn your website <img alt="\":D\"" src="%5C"><br>- If you put a referer tracker on the google ads on the File Manager page, maybe you'll pwn whoever clicks on that link? <img alt="\":D\"" src="%5C"><br><br>PS: I have a website at freewebs too. Maybe it'll get pwned someday? <img alt="\":P\"" src="%5C">
alternatively, if you're lazy you could always try the googledork<br><br>site:extremetracking.com inurl:login \"freewebs.com\" \"token=\"<br>i'm guessing most of them are stale by now. good find. <img alt="\":drink4:\"" src="%5C"><br><br>[edit]<br> - one could also try adding a google alert of the above-mentioned googledork and get it as soon as it happens...<br><br> - Extreme tracker does not always log the variables that you need. pity...<br>[/edit]<br><br>