9 lines
No EOL
470 B
Text
Executable file
9 lines
No EOL
470 B
Text
Executable file
source: http://www.securityfocus.com/bid/24966/info
|
|
|
|
geoBlog is prone to multiple security-bypass vulnerabilities because the application fails to properly validate users when deleting user blogs and comments.
|
|
|
|
An attacker may exploit these issues to delete blogs and comments regardless of the security settings. This may aid the attacker in further attacks.
|
|
|
|
geoBlog v1 is vulnerable to these issues.
|
|
|
|
http://www.example.com/blog/admin/deleteblog.php?id=15 |