Prozilla Real Estate Payment.PHP Bypass Vulnerability
BID:10015
Info
Prozilla Real Estate Payment.PHP Bypass Vulnerability
| Bugtraq ID: | 10015 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 30 2004 12:00AM |
| Updated: | Mar 30 2004 12:00AM |
| Credit: | Discovery of this vulnerability has been credited to jasont. |
| Vulnerable: |
Prozilla Real Estate Web Template |
| Not Vulnerable: | |
Discussion
Prozilla Real Estate Payment.PHP Bypass Vulnerability
Prozilla Real Estate web site template has been reported prone to an account payment bypass vulnerability. The issue is reported to present itself when a user is registering a username. By taking several unexpected actions while registering an account a user may reportedly bypass the payment routines.
Prozilla Real Estate web site template has been reported prone to an account payment bypass vulnerability. The issue is reported to present itself when a user is registering a username. By taking several unexpected actions while registering an account a user may reportedly bypass the payment routines.
Exploit / POC
Prozilla Real Estate Payment.PHP Bypass Vulnerability
There is no exploit required.
There is no exploit required.
Solution / Fix
Prozilla Real Estate Payment.PHP Bypass Vulnerability
Solution:
It is reported that a vendor supplied fix is pending release; the follow forum post may contain details of the availability of this fix:
http://hypershack.com/forum/index.php?act=ST&f=2&t=114&s=1f62c63d654bb608f0c7e1d8069688e9
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
It is reported that a vendor supplied fix is pending release; the follow forum post may contain details of the availability of this fix:
http://hypershack.com/forum/index.php?act=ST&f=2&t=114&s=1f62c63d654bb608f0c7e1d8069688e9
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Prozilla Real Estate Payment.PHP Bypass Vulnerability
References:
References:
- Security+payments Bug (Hypershack)
- TurnKey Websites Homepage (Prozilla)