SendCard Login.PHP Browser Redirection Authentication Bypass Vulnerability

SendCard is prone to an authentication-bypass vulnerability because the application fails to prevent an attacker from accessing admin scripts directly without requiring authentication.

A remote attacker can exploit this issue to perform administrative functions without requiring authentication. For example, the attacker may be able to create administrative users for the affected application.


 

Privacy Statement
Copyright 2010, SecurityFocus