SudBox Boutique login.PHP Authentication Bypass Vulnerability

A vulnerability has been reported for SudBox Boutique. The problem occurs due to insufficient initialization of variables and may allow an unauthorized user to gain authenticate. Specifically, by making a malicious request to the login.php script it may be possible to authenticate as the administrative user.


Privacy Statement
Copyright 2010, SecurityFocus