Google Urchin 5.7.3 Report.CGI Authorization Bypass Vulnerability

2007-10-11T00:00:00
ID EDB-ID:30661
Type exploitdb
Reporter MustLive
Modified 2007-10-11T00:00:00

Description

Google Urchin 5.7.3 Report.CGI Authorization Bypass Vulnerability. CVE-2007-5113 . Webapps exploit for cgi platform

                                        
                                            source: http://www.securityfocus.com/bid/26037/info

Google Urchin is prone to an authentication-bypass vulnerability.

An attacker can exploit this issue to gain administrative access to the vulnerable application. This may lead to other attacks.

Urchin 5.7.03 is vulnerable to this issue; other versions may also be affected.

NOTE: Further reports suggest that this is not a vulnerability, but a documented feature of the application. 

http://www.example.com/report.cgi?profile=x&rid=42&prefs=x&n=10&vid=1301&bd=20070703&ed=20070703&dt=4&gtype=5