Messagerie 1.0 - Arbitrary User Removal DoS Vulnerability

2002-04-27T00:00:00
ID EDB-ID:21428
Type exploitdb
Reporter frog
Modified 2002-04-27T00:00:00

Description

Messagerie 1.0 Arbitrary User Removal DoS Vulnerability. Dos exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/4635/info

Messagerie is a web message board application maintained by La Basse.

An issue has been discovered in Messagerie, which could allow an attacker to delete arbitrary user accounts.

Reportedly, submitting a specially crafted URL will successfully remove user accounts.

It should be noted that known usernames of the system is required.


http://www.host.com/supp_membre.php?choix_membre_supp=polom