Plague News System 0.7 Delete.PHP Access Restriction Bypass Vulnerability

ID SSV:79588
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.


Plague News System is prone to an access restriction bypass vulnerability. The issue exists due to a lack of sanity checks performed by 'delete.php' on deletion requests passed to the script.

A remote attacker may exploit this issue to delete site content and deny service for legitimate users.[ID of comment here][ID of news here][ID of shout here]