header-logo
Suggest Exploit
vendor:
Phil's Bookmark
by:
SecurityFocus
8.8
CVSS
HIGH
Authentication-Bypass
287
CWE
Product Name: Phil's Bookmark
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: No
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2005

Phil’s Bookmark Authentication-Bypass Vulnerability

Phil's Bookmark script is prone to an authentication-bypass vulnerability due to the script failing to prompt for authentication credentials. An attacker can exploit this issue to bypass authentication and gain admin access to the affected application.

Mitigation:

Ensure that authentication credentials are properly requested and validated.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/17878/info

Phil's Bookmark script is prone to an authentication-bypass vulnerability. The issue occurs because the affected script fails to prompt for authentication credentials. 

An attacker can exploit this issue to bypass authentication and gain admin access to the affected application. This could aid in further attacks on the affected computer.

http://www.example.com/bookmarks/admin.php?edit=1

Navigation

Suggest Exploit

Services By CQR