Newsscript 1.0 - Administrative Privilege Escalation

EDB-ID:

22663

CVE:

N/A




Platform:

PHP

Date:

2003-05-27


source: https://www.securityfocus.com/bid/7705/info

A vulnerability has been reported that could enable a member of the news system to create and access an administrative account. This is due to insufficient validation of data supplied to account editing input fields of Newsscript.

Peter<~>2