bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/23060.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

7 lines
No EOL
458 B
Text
Raw Blame History

source: https://www.securityfocus.com/bid/8499/info
A vulnerability has been reported for Py-Membres that allows remote attackers to obtain administrative privileges on vulnerable installations.
Reportedly, Py-Membres does not fully check some URI parameters. Thus it is possible for an attacker to manipulate URI parameters and log into the system as an administrative user without the need for passwords.
http://www.example.com/admin/admin.php?adminpy=1
Reference in a new issue View git blame Copy permalink