vendor:
XP Book
by:
wlhaan hacker
7.5
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: XP Book
Affected Version From: 3
Affected Version To: 3
Patch Exists: YES
Related CWE: N/A
CPE: a:kuwaitiphp:xp_book:3.0
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2003
XP Book v3.0) login Admin Exploit)
This exploit allows an attacker to bypass authentication and gain access to the admin panel of XP Book v3.0. The exploit is achieved by accessing the template/admin_bady.html?action=setting page.
Mitigation:
Upgrade to the latest version of XP Book v3.0.