Bypassing Restricted Functions in NotifyLink 3.0 Web Interface

Bypassing Restricted Functions in NotifyLink 3.0 Web Interface

CVE-2005-0811 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a direct request to certain URLs.

Learn more about our Web App Pen Testing.