XGB 2.0 - Authentication Bypass

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1054887 漏洞类型
发布时间 2005-02-08 更新时间 2005-02-08
CVE编号 N/A CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/25090
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/12489/info

xGB is reportedly affected by a vulnerability that could permit unauthorized administrator access. This issue is due to the application failing to properly verify user credentials.

A malicious user could exploit this vulnerability to bypass user authentication and gain administrative access.

This vulnerability is reported to affect xGB version 2.0; earlier versions may also be vulnerable. 

http://www.example.com/xGB.php?act=admin&do=edit