Lucene search

K

Newsscript - Access Validation

๐Ÿ—“๏ธย 08 Mar 2005ย 00:00:00Reported byย [email protected]Typeย 
exploitdb
ย exploitdb
๐Ÿ”—ย www.exploit-db.com๐Ÿ‘ย 15ย Views

Show more
Related
Code
ReporterTitlePublishedViews
Family
Cvelist
CVE-2005-0735
13 Mar 200505:00
โ€“cvelist
CVE
CVE-2005-0735
2 May 200504:00
โ€“cve
CVE
CVE-2005-0727
2 May 200504:00
โ€“cve
Tenable Nessus
NewsScript newsscript.pl mode Parameter Privilege Escalation
10 Mar 200500:00
โ€“nessus
NVD
CVE-2005-0735
2 May 200504:00
โ€“nvd
NVD
CVE-2005-0727
2 May 200504:00
โ€“nvd
source: https://www.securityfocus.com/bid/12761/info

NewsScript is reported prone to an access validation vulnerability. This issue may allow an unauthorized attacker to add, modify and delete messages.

It is reported that an attacker can exploit this issue by issuing a specially crafted HTTP GET request for the 'newsscript.pl' script to bypass access checks and carry out administrative tasks. 

www.example.com/newsscript.pl?mode=admin 

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
08 Mar 2005 00:00Current
7.4High risk
Vulners AI Score7.4
15
.json
Report