WIKINDX Localization Module Unspecified Authentication Bypass Vulnerability
TITLE: WIKINDX Localization Module Unspecified Authentication Bypass Vulnerability
CLASS: Access Validation Error
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 18 2007 12:00AM
UPDATE: Jun 18 2007 12:00AM
CREDIT: The vendor reported this issue.
VULNERABLE:
Wikindx Localization Module 1.1NOT VULNERABLE:
Wikindx Localization Module 1.2
Vai alla pagina originale su Security Focus
Discussion
WIKINDX Localization Module is prone to an unspecified authentication-bypass vulnerability.
Exploiting this issue could allow an attacker to access certain administrative sections of the application. This may facilitate a complete compromise of the vulnerable application.
WIKINDX Localization Module versions prior to 1.2 are vulnerable to this issue.
Exploit
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com
Solution
Solution:
The vendor released version 1.2 to addresses this issue. Please see the references for more information.
Wikindx Localization Module 1.1
- Wikindx wikindx_localization_v1.2
http://sourceforge.net/project/showfiles.php?group_id=94435&package_id=171351&release_id=516776
References
References:
- WIKINDX Homepage (WIKINDX)