admin/radera/tabort.asp in Hogstorps hogstorp guestbook 2.0 does not verify user credentials, which allows remote malicious users to delete arbitrary posts via a modified delID parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hogstorps hogstorp guestbook 2.0 |