Gonafish.com

Discussion in 'other security issues & news' started by XandroZ, Sep 5, 2006.

Thread Status:
Not open for further replies.
  1. XandroZ

    XandroZ Registered Member

    Joined:
    Aug 4, 2006
    Posts:
    14
    Gonafish.com LinksCaffe 2.0 and 3.0 do not properly restrict access to administrator functions, which allows remote attackers to gain full administration rights via a direct request to Admin/admin1953.php
     
  2. TNT

    TNT Registered Member

    Joined:
    Sep 4, 2005
    Posts:
    948
    I think this is stuff for BugTraq (providing you post some technical explanation), as this forum doesn't really discuss exploitable vulnerabilities in software packages, at least in a "full disclosure" way (admins correct me if I'm wrong).
     
  3. Bubba

    Bubba Updates Team

    Joined:
    Apr 15, 2002
    Posts:
    11,271
    Correct....however I believe the thread starter is providing an informational thread about a vulnerability and has simply failed to provide a link to the Alert.

    For example:

    Vulnerability Summary CVE-2006-4462

     
Thread Status:
Not open for further replies.