Gonafish.com

Discussion in 'other security issues & news' started by XandroZ, Sep 5, 2006.

Thread Status:
Not open for further replies.
  1. XandroZ

    XandroZ Registered Member

    Joined:
    Aug 4, 2006
    Posts:
    14
    Gonafish.com LinksCaffe 2.0 and 3.0 do not properly restrict access to administrator functions, which allows remote attackers to gain full administration rights via a direct request to Admin/admin1953.php
     
    XandroZ, Sep 5, 2006
    #1
  2. TNT

    TNT Registered Member

    Joined:
    Sep 4, 2005
    Posts:
    948
    I think this is stuff for BugTraq (providing you post some technical explanation), as this forum doesn't really discuss exploitable vulnerabilities in software packages, at least in a "full disclosure" way (admins correct me if I'm wrong).
     
    TNT, Sep 5, 2006
    #2
  3. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
    Correct....however I believe the thread starter is providing an informational thread about a vulnerability and has simply failed to provide a link to the Alert.

    For example:

    Vulnerability Summary CVE-2006-4462

     
    Bubba, Sep 5, 2006
    #3
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...