Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the wp-pagenavi domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home/u918112125/domains/exploit.company/public_html/wp-includes/functions.php on line 6114
Authentication Bypass Vulnerability in Olate Download - exploit.company
header-logo
Suggest Exploit
vendor:
Olate Download
by:
Unknown
7.5
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: Olate Download
Affected Version From: Prior to Olate Download 3.4.2
Affected Version To: Olate Download 3.4.1 and earlier
Patch Exists: YES
Related CWE: Unknown
CPE: a:olate:download
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Authentication Bypass Vulnerability in Olate Download

The Olate Download application is prone to an authentication-bypass vulnerability. An attacker can exploit this vulnerability to gain administrative access to the affected application, leading to remote compromise.

Mitigation:

Upgrade to Olate Download version 3.4.2 or later.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/25343/info

Olate Download is prone to an authentication-bypass vulnerability.

An attacker can exploit this issue to gain administrative access to the affected application. Successfully exploiting this issue will result in the remote compromise of the affected application.

Versions prior to Olate Download 3.4.2 are vulnerable. 

OD3_AutoLogin=17225df9b911486c1ccae0378094c33a::a:3:{i:0;i:2;i:1;s:4:\"imei\";i:2;i:2;}

Navigation

Suggest Exploit

Services By CQR