PHPads Authentication Bypass Vulnerabilities - Jan15 Network Vulnerability

Summary

This host is installed with PHPads and is prone to Authentication Bypass vulnerabilities.

Impact

Successful exploitation allows to bypass the authentication mechanism by creating the cookies 'user' and 'pass' and assigning them the corresponding values taken from the 'ads.dat' file. Impact Level: Application

Solution

No solution or patch is available as of 20th February, 2015. Information regarding this issue will updated once the solution details are available. For updates refer to http://www.opensource.be/openx

Insight

The flaws is due to 'ads.dat' file which is in web root.

Affected

PHPads version 2.0

Detection

Send a crafted data via HTTP GET request and check whether it is able to read 'ads.dat' file or not.

References

http://secunia.com/community/advisories/33580
http://www.exploit-db.com/exploits/35535

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 8.5 AV:N/AC:L/Au:N/C:C/I:P/A:N

Related Vulnerabilities

Apple Safari PDF Javascript Security Bypass Bypass Vulnerability
ArticleFR CMS 'id' Parameter SQL Injection Vulnerability
ATutor password reminder SQL injection
Adiscon LogAnalyzer Multiple SQL Injection and XSS Vulnerabilities
Admin News Tools Multiple Vulnerabilities

Take action and discover your vulnerabilities