RadScripts a_editpage.php filename Variable Arbitrary File Overwrite

2006-07-24T00:00:00
ID EDB-ID:28261
Type exploitdb
Reporter INVENT
Modified 2006-07-24T00:00:00

Description

RadScripts a_editpage.php filename Variable Arbitrary File Overwrite. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/19128/info

Multiple Rad Scripts products are prone to an authentication-bypass vulnerability. These issues occur because the applications fail to prevent an attacker from accessing admin scripts directly without requiring authentication.

A remote attacker can exploit these issues to perform administrative functions without requiring authentication. For example, the attacker may be able to overwrite existing files on the vulnerable computer in the context of the webserver process.

http://target.xxx/[product_home]/admin/a_editpage.php?filename=[arbitrary_file]