SLAED CMS 4 Installation Script Unauthorized Access Vulnerability

2010-02-27T00:00:00
ID EDB-ID:33681
Type exploitdb
Reporter indoushka
Modified 2010-02-27T00:00:00

Description

SLAED CMS 4 Installation Script Unauthorized Access Vulnerability. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/38453/info

SLAED CMS is prone to an unauthorized-access vulnerability.

Attackers can exploit this issue to obtain unauthorized access to installation scripts.

SLAED CMS 4 is vulnerable; other versions may also be affected. 

The following example URIs are available:

http://www.example.com/sd/setup.php?op=language&lang=1

http://www.example.com/sd/install/index.php?op=language&lang=1