- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 30321
- Проверка EDB
-
- Пройдено
- Автор
- JOSEPH.GIRON13
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2007-4047
- Дата публикации
- 2007-07-19
Код:
source: https://www.securityfocus.com/bid/24966/info
geoBlog is prone to multiple security-bypass vulnerabilities because the application fails to properly validate users when deleting user blogs and comments.
An attacker may exploit these issues to delete blogs and comments regardless of the security settings. This may aid the attacker in further attacks.
geoBlog v1 is vulnerable to these issues.
http://www.example.com/blog/admin/deleteblog.php?id=15- Источник
- www.exploit-db.com
