Secunia Advisory SA29722Prozilla Reviews "DeleteUser.php" Security Bypass
|
||||||||||||||||||||||||||||||||||||||||||||||||||||
Description
t0pP8uZz has reported a vulnerability in Prozilla Reviews, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused due to insufficient access restrictions of the siteadmin/DeleteUser.php script. This can be exploited to delete arbitrary users by directly accessing the vulnerable script. Solution Provided and/or discovered by Deep Links Do you have additional information related to this advisory?Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com
|
||||||||||||||||||||||||||||||||||||||||||||||||||||
87 views | ![]() |
| Fedora update for samba | |
109 views | ![]() |
| Debian update for tdiary | |