source: wwwsecurityfocuscom/bid/10506/info
AspDotNetStorefront is reportedly prone to an access validation vulnerability that may allow a remote attacker to delete arbitrary contents from a vulnerable Web site The issue occurs because the 'deleteiconaspx' script does not validate access before allowing an unprivileged user to delete con ...