Back to search
CVE-2007-6414
Published: Dec 17, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
admin/administrator.php in Adult Script 1.6 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication and obtain administrative credentials via a direct request. NOTE: this can be leveraged for arbitrary code execution through a request to admin/videolinks_view.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
adultscript-administrator-security-bypass(39034)
vdb-entry
x_refsource_XF
4731
exploit
x_refsource_EXPLOIT-DB
28064
third-party-advisory
x_refsource_SECUNIA
26870
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now