header-logo
Suggest Exploit
vendor:
Guestbook
by:
SecurityFocus
4.3
CVSS
MEDIUM
Access Authorization Vulnerability
287
CWE
Product Name: Guestbook
Affected Version From: 2
Affected Version To: 2
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2005

Hogstorps guestbook Access Authorization Vulnerability

Hogstorps guestbook is prone to an access-authorization vulnerability. The issue occurs because the affected script fails to prompt for authentication credentials. An attacker can exploit this issue to delete and modify application data. This could aid in further attacks on the affected computer.

Mitigation:

Ensure that the application is configured to prompt for authentication credentials before allowing access to sensitive data.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/18205/info

Hogstorps guestbook is prone to an access-authorization vulnerability. The issue occurs because the affected script fails to prompt for authentication credentials. 

An attacker can exploit this issue to delete and modify application data. This could aid in further attacks on the affected computer.

Version 2.0 is vulnerable; other versions may also be affected.

http://www.example.com/[path_of_application]/admin/radera/tabort.asp?delID=119

Navigation

Suggest Exploit

Services By CQR