DotNetNuke Security Bypass Vulnerability
BID:58899
Info
DotNetNuke Security Bypass Vulnerability
| Bugtraq ID: | 58899 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 05 2013 12:00AM |
| Updated: | Apr 05 2013 12:00AM |
| Credit: | Antonio David González |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
DotNetNuke Security Bypass Vulnerability
DotNetNuke is prone to a security-bypass vulnerability.
Successful exploits may allow an attacker to bypass certain security restrictions and perform unauthorized actions, which may lead to further attacks.
Versions prior to DotNetNuke 7.0.5 are vulnerable.
DotNetNuke is prone to a security-bypass vulnerability.
Successful exploits may allow an attacker to bypass certain security restrictions and perform unauthorized actions, which may lead to further attacks.
Versions prior to DotNetNuke 7.0.5 are vulnerable.
Exploit / POC
DotNetNuke Security Bypass Vulnerability
Attackers can exploit this issue through a browser.
Attackers can exploit this issue through a browser.
Solution / Fix
DotNetNuke Security Bypass Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.