Newsscript 1.0 - Administrative Privilege Escalation
| EKU-ID: 28139 | CVE: | OSVDB-ID: |
| Author: Peter Winter-Smith | Published: 2003-05-27 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 28139 | CVE: | OSVDB-ID: |
| Author: Peter Winter-Smith | Published: 2003-05-27 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/7705/info A vulnerability has been reported that could enable a member of the news system to create and access an administrative account. This is due to insufficient validation of data supplied to account editing input fields of Newsscript. Peter<~>2