Published: 02/06/2006 Updated: 21/11/2024

admin/radera/tabort.asp in Hogstorps hogstorp guestbook 2.0 does not verify user credentials, which allows remote malicious users to delete arbitrary posts via a modified delID parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hogstorps hogstorp guestbook 2.0

source: wwwsecurityfocuscom/bid/18205/info Hogstorps guestbook is prone to an access-authorization vulnerability The issue occurs because the affected script fails to prompt for authentication credentials An attacker can exploit this issue to delete and modify application data This could aid in further attacks on the affected compute ...

NVD-CWE-Other https://nvd.nist.gov https://www.exploit-db.com/exploits/27932/https://www.first.org/epss http://colander.altervista.org/advisory/HTGuestBook2.txt http://secunia.com/advisories/20402 http://www.securityfocus.com/bid/18205 http://www.vupen.com/english/advisories/2006/2082 https://exchange.xforce.ibmcloud.com/vulnerabilities/26979 http://colander.altervista.org/advisory/HTGuestBook2.txt http://secunia.com/advisories/20402 http://www.securityfocus.com/bid/18205 http://www.vupen.com/english/advisories/2006/2082 https://exchange.xforce.ibmcloud.com/vulnerabilities/26979

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-2771

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect