Beanwebb Guestbook 1.0 - Unauthorized Administrative Access

Author: euronymous
type: webapps
platform: php
port: 
date_added: 2003-03-29  
date_updated: 2012-11-03  
verified: 1  
codes: OSVDB-53711  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22443.txt  

source: https://www.securityfocus.com/bid/7232/info

A vulnerability has been reported for Guestbook that may allow remote attackers to obtain unauthorized access to administrative functions.

The vulnerability is likely due to insufficient permissions on the 'admin.php' script file.

http://hostname/guestbook/admin.php