- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 38689
- Проверка EDB
-
- Пройдено
- Автор
- FARA RUSTEIN
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2013-2653
- Дата публикации
- 2013-08-01
SilverStripe CMS - 'MemberLoginForm.php' Information Disclosure
Код:
source: https://www.securityfocus.com/bid/61578/info
SilverStripe is prone to an information-disclosure vulnerability.
An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks.
SilverStripe 3.0.3 is vulnerable; other versions may also be affected.
http://<X.X.X.X:Port>/Security/LoginForm?AuthenticationMethod=MemberAuthenticator&Email=<email>&Password=<password>&BackURL=%2Fadmin%2Fpages&action_dologin=Log+in- Источник
- www.exploit-db.com
