SudBox Boutique 1.2 – ‘login.php’ Authentication Bypass

SudBox Boutique 1.2 – ‘login.php’ Authentication Bypass

漏洞ID 1053877 漏洞类型
发布时间 2003-05-21 更新时间 2003-05-21
图片[1]-SudBox Boutique 1.2 – ‘login.php’ Authentication Bypass-安全小百科CVE编号 N/A
图片[2]-SudBox Boutique 1.2 – ‘login.php’ Authentication Bypass-安全小百科CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/22625
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/7651/info

A vulnerability has been reported for SudBox Boutique. The problem occurs due to insufficient initialization of variables and may allow an unauthorized user to gain authenticate. Specifically, by making a malicious request to the login.php script it may be possible to authenticate as the administrative user.

http://www.example.org/admin/login.php?check=1&admin=1

相关推荐: Sun JDK/SDK 1.3/1.4 / IBM JDK 1.3.1 / BEA Systems WebLogic 5/6/7 – java.util.zip Null Value Denial of Service (3)

Sun JDK/SDK 1.3/1.4 / IBM JDK 1.3.1 / BEA Systems WebLogic 5/6/7 – java.util.zip Null Value Denial of Service (3) 漏洞ID 1053758 漏洞类…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享