PostNuke 0.7x – Install Script Administrator Password Disclosure

PostNuke 0.7x – Install Script Administrator Password Disclosure

漏洞ID 1054539 漏洞类型
发布时间 2004-07-24 更新时间 2004-07-24
图片[1]-PostNuke 0.7x – Install Script Administrator Password Disclosure-安全小百科CVE编号 N/A
图片[2]-PostNuke 0.7x – Install Script Administrator Password Disclosure-安全小百科CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/24307
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/10793/info

It is reported that PostNuke may disclose administrator authentication credentials to remote attackers. This issue presents itself because the application fails to remove the install script 'install.php' after installation. This can allow an attacker to gain unauthorized access to the content management system. The attacker may then carry out further attacks against other users or the computer running the vulnerable application.

http://www.example.com/install.php

相关推荐: Akfingerd Local Denial Of Service Attack

Akfingerd Local Denial Of Service Attack 漏洞ID 1101217 漏洞类型 Design Error 发布时间 2002-12-05 更新时间 2002-12-05 CVE编号 N/A CNNVD-ID N/A 漏洞平…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享