Lyris List Manager Web Interface Vulnerability: Subscriber Administrative Access

Lyris List Manager Web Interface Vulnerability: Subscriber Administrative Access

CVE-2000-0758 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The web interface for Lyris List Manager 3 and 4 allows list subscribers to obtain administrative access by modifying the value of the list_admin hidden form field.

Learn more about our Web App Pen Testing.