Published: 14/09/2006 Updated: 19/10/2017

CVSS v2 Base Score: 5.4 | Impact Score: 6.9 | Exploitability Score: 4.9

VMScore: 545

Vector: AV:N/AC:H/Au:N/C:C/I:N/A:N

src/index.php in WebSPELL 4.01.01 and previous versions, when register_globals is enabled, allows remote malicious users to bypass authentication and gain sensitive information stored in the database via a modified userID parameter in a write action to admin/database.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
webspell webspell 4.0
webspell webspell
webspell webspell 4.1
webspell webspell 4.1.1

# WebSPELL <= 40101 Accessible Database Backup Download Exploit # Discovered by: Trex # Visit: wwwSecuritySectororg / wwwUnderGroundag # Exploit: [SITE]/[PATH]/admin/databasephp?action=write&userID=1 # Solution: cmswebspellorg/indexphp?site=files&file=15 # milw0rmcom [2006-09-12] ...

NVD-CWE-Other http://cms.webspell.org/index.php?site=files&file=15 http://www.securityfocus.com/bid/19975 http://secunia.com/advisories/21881 http://www.vupen.com/english/advisories/2006/3572 https://exchange.xforce.ibmcloud.com/vulnerabilities/28896 https://www.exploit-db.com/exploits/2352 https://nvd.nist.gov https://www.exploit-db.com/exploits/2352/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-4782

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect