DNN(DotNetNuke®) Iconbar Control Panel Bad Access Level config

2014-08-26T00:00:00

Description

#+++++++++++++++++++++++++++++++++++++++++++++++++++++++++ # Title : DNN(DotNetNuke®) Iconbar Control Panel Bad Access Level config # Author : alieye # vendor : http://dnnsoftware.com/ # Contact : cseye_ut@yahoo.com # Risk : High # Class: Remote # # Google Dork: # inurl:ctl/+inurl:/tab # inurl:ctl+inurl:tab Model Modules Pages # inurl:ctl=tab Page Details Copy Page Permissions # # Version: all version # Date: 25/08/2014 # os : windows server 2008 #++++++++++++++++++++++++++++++++++++++++++++++++++++++++ You can making your own attack with Vulnerable Page go to victim site and making with Iconbar moduels (phishing page,deface page or privilege escalation) #++++++++++++++++++++++++++++++++++++++++++++++++++++++++ [#] Spt Tnx To ZOD14C , 4l130h1 , bully13 , 3.14nnph , amir and all cseye members [#] Thanks To All Iranian Hackers [#] website : http://cseye.vcp.ir/ #++++++++++++++++++++++++++++++++++++++++++++++++++++++++

{"id": "SECURITYVULNS:DOC:31023", "bulletinFamily": "software", "title": "DNN(DotNetNuke\u00ae) Iconbar Control Panel Bad Access Level config", "description": "\r\n\r\n#+++++++++++++++++++++++++++++++++++++++++++++++++++++++++\r\n# Title : DNN(DotNetNuke\u00ae) Iconbar Control Panel Bad Access Level config\r\n# Author : alieye\r\n# vendor : http://dnnsoftware.com/\r\n# Contact : cseye_ut@yahoo.com\r\n# Risk : High\r\n# Class: Remote\r\n#\r\n# Google Dork: \r\n# inurl:ctl/+inurl:/tab\r\n# inurl:ctl+inurl:tab Model Modules Pages\r\n# inurl:ctl=tab Page Details Copy Page Permissions\r\n#\r\n# Version: all version\r\n# Date: 25/08/2014\r\n# os : windows server 2008\r\n#++++++++++++++++++++++++++++++++++++++++++++++++++++++++\r\n\r\n\r\n\r\nYou can making your own attack with Vulnerable Page \r\ngo to victim site and making with Iconbar moduels (phishing page,deface page or privilege escalation)\r\n\r\n#++++++++++++++++++++++++++++++++++++++++++++++++++++++++\r\n[#] Spt Tnx To ZOD14C , 4l130h1 , bully13 , 3.14nnph , amir and all cseye members\r\n[#] Thanks To All Iranian Hackers\r\n[#] website : http://cseye.vcp.ir/\r\n#++++++++++++++++++++++++++++++++++++++++++++++++++++++++ \r\n\r\n", "published": "2014-08-26T00:00:00", "modified": "2014-08-26T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:31023", "reporter": "Securityvulns", "references": [], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:10:53", "edition": 1, "viewCount": 28, "enchantments": {"score": {"value": 0.8, "vector": "NONE"}, "dependencies": {"references": []}, "backreferences": {"references": [{"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13930"]}]}, "exploitation": null, "vulnersScore": 0.8}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647589307, "score": 1659730939}}

DNN&#40;DotNetNuke®&#41; Iconbar Control Panel Bad Access Level config

Description

DNN(DotNetNuke®) Iconbar Control Panel Bad Access Level config