oss-sec mailing list archives
Re: CVE request: websitebaker 2.8.1 and earlier: authentication error in backup module
From: Kurt Seifried <kseifried () redhat com>
Date: Sun, 20 Nov 2011 19:57:48 -0700
On 11/20/2011 04:07 AM, Hanno Böck wrote:
http://www.websitebaker2.org/posts/security-vulnerability-backup-module-in-wb-core-13.php Extended information: Everybody can use the backup module from anywhere and download the backup directly on every PC the "exploiter" likes without any noticing by you.
Please use CVE-2011-4322 for this issue. -- -Kurt Seifried / Red Hat Security Response Team
Current thread:
- CVE request: websitebaker 2.8.1 and earlier: authentication error in backup module Hanno Böck (Nov 20)
- Re: CVE request: websitebaker 2.8.1 and earlier: authentication error in backup module Kurt Seifried (Nov 20)