#+++++++++++++++++++++++++++++++++++++++++++++++++++++++++
# Title : DNN(DotNetNuke®) Iconbar Control Panel Bad Access Level config
# Author : alieye
# vendor : http://dnnsoftware.com/
# Contact : cseye_ut@yahoo.com
# Risk : High
# Class: Remote
#
# Google Dork:
# inurl:ctl/+inurl:/tab
# inurl:ctl+inurl:tab Model Modules Pages
# inurl:ctl=tab Page Details Copy Page Permissions
#
# Version: all version
# Date: 25/08/2014
# os : windows server 2008
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++
You can making your own attack with Vulnerable Page
go to victim site and making with Iconbar moduels (phishing page,deface page or privilege escalation)
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++
[#] Spt Tnx To ZOD14C , 4l130h1 , bully13 , 3.14nnph , amir and all cseye members
[#] Thanks To All Iranian Hackers
[#] website : http://cseye.vcp.ir/
#++++++++++++++++++++++++++++++++++++++++++++++++++++++++
{"id": "SECURITYVULNS:DOC:31023", "bulletinFamily": "software", "title": "DNN(DotNetNuke\u00ae) Iconbar Control Panel Bad Access Level config", "description": "\r\n\r\n#+++++++++++++++++++++++++++++++++++++++++++++++++++++++++\r\n# Title : DNN(DotNetNuke\u00ae) Iconbar Control Panel Bad Access Level config\r\n# Author : alieye\r\n# vendor : http://dnnsoftware.com/\r\n# Contact : cseye_ut@yahoo.com\r\n# Risk : High\r\n# Class: Remote\r\n#\r\n# Google Dork: \r\n# inurl:ctl/+inurl:/tab\r\n# inurl:ctl+inurl:tab Model Modules Pages\r\n# inurl:ctl=tab Page Details Copy Page Permissions\r\n#\r\n# Version: all version\r\n# Date: 25/08/2014\r\n# os : windows server 2008\r\n#++++++++++++++++++++++++++++++++++++++++++++++++++++++++\r\n\r\n\r\n\r\nYou can making your own attack with Vulnerable Page \r\ngo to victim site and making with Iconbar moduels (phishing page,deface page or privilege escalation)\r\n\r\n#++++++++++++++++++++++++++++++++++++++++++++++++++++++++\r\n[#] Spt Tnx To ZOD14C , 4l130h1 , bully13 , 3.14nnph , amir and all cseye members\r\n[#] Thanks To All Iranian Hackers\r\n[#] website : http://cseye.vcp.ir/\r\n#++++++++++++++++++++++++++++++++++++++++++++++++++++++++ \r\n\r\n", "published": "2014-08-26T00:00:00", "modified": "2014-08-26T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:31023", "reporter": "Securityvulns", "references": [], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:10:53", "edition": 1, "viewCount": 28, "enchantments": {"score": {"value": 1.8, "vector": "NONE"}, "dependencies": {"references": []}, "backreferences": {"references": [{"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13930"]}]}, "exploitation": null, "vulnersScore": 1.8}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647589307, "score": 0}}