AdMentor Login Flaw Network Vulnerability

Summary

AdMentor is a totally free ad rotator script written entirely in ASP. A security vulnerability in the product allows remote attackers to cause the login administration ASP to allow them to enter without knowing any username or password (thus bypassing any authentication protection enabled for the ASP file).

Solution

Contact the author for a patch

References

http://www.securiteam.com/windowsntfocus/5DP0N1F6AW.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2002-0308
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Atutor AChecker Multiple SQL Injection and XSS Vulnerabilities
appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
AjaXplorer zoho plugin Directory Traversal Vulnerability
Admbook PHP Code Injection Flaw
AdaptBB Multiple Input Validation Vulnerabilities

Take action and discover your vulnerabilities