TowerBlog Admin Bypass Network Vulnerability

Summary

The remote host is running TowerBlog, a single-user content management system, written in PHP. Due to design error, an attacker may be granted administrative privileges by requesting the page '/?x=admin' while setting a cookie whose value is 'TowerBlog_LoggedIn=1'.

Solution

Disable this software

References

http://www.securiteam.com/unixfocus/5VP0G0KFFK.html

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ApPHP MicroBlog Remote Code Execution Vulnerability
AlienVault OSSIM 'date_from' Parameter Multiple SQL Injection Vulnerabilities
A Really Simple Chat Multiple SQL Injection Vulnerabilities
ALCASAR Remote Code Execution Vulnerability
AjaXplorer zoho plugin Directory Traversal Vulnerability

Take action and discover your vulnerabilities