vendor:
Ra1NX
by:
bwall
7,5
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: Ra1NX
Affected Version From: v2.0
Affected Version To: v2.0
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Ubuntu
2013
Ra1NX PHP Bot pubcall Authentication Bypass Remote Code Execution
This module allows remote command execution on the PHP IRC bot Ra1NX by using the public call feature in private message to covertly bypass the authentication system.
Mitigation:
Ensure that authentication systems are properly implemented and tested.
