header-logo
Suggest Exploit
vendor:
BillboardManager
by:
x0r
7.5
CVSS
HIGH
Remote Contents Change
CWE
Product Name: BillboardManager
Affected Version From: 1.1 and below
Affected Version To: 1.1
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2009

DMXReady BillboardManager <= 1.1 Remote Contents Change Vulnerability

The DMXReady BillboardManager version 1.1 and below is vulnerable to remote contents change. An attacker can exploit this vulnerability to modify the contents of the billboard remotely.

Mitigation:

Upgrade to a patched version of DMXReady BillboardManager.
Source

Exploit-DB raw data:

*******************************************************************************
# Title   :  DMXReady BillboardManager <= 1.1 Remote Contents Change Vulnerability
# Author  :  x0r
# Contact :   andry2000@hotmail.it \ x0r@live.it
# S.Page  :  http://www.dmxready.com
# $$      :  49.97 $

*******************************************************************************

Permissions:
Update
Delete
Insert Category / Sub Category

Example: 
You Find -> http://[target]/[path]//applications/BillboardManager/
Edit  ->   
http://www.demo.dmxready.com/admin/BillboardManager/add_category.asp

# milw0rm.com [2009-01-14]

Navigation

Suggest Exploit

Services By CQR