WpQuiz Extras Folder adminrestore.php Privilege Escalation

2004-07-30T00:00:00
ID OSVDB:8321
Type osvdb
Reporter Jonathan Tough(j@eyeimpressions.com)
Modified 2004-07-30T00:00:00

Description

Vulnerability Description

WpQuiz contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to "extras" folder being accessed without any authentication. By registering an account and running the "adminrestore.php" script in the "extras" folder, a remote attacker can gain administrative privileges. This flaw may lead to a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

WpQuiz contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is due to "extras" folder being accessed without any authentication. By registering an account and running the "adminrestore.php" script in the "extras" folder, a remote attacker can gain administrative privileges. This flaw may lead to a loss of integrity.

References:

Vendor URL: http://wireplastik.com/ Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0339.html ISS X-Force ID: 16848 CVE-2004-1704