Unauthenticated Remote Deletion Vulnerability in Plague News System 0.6 and Earlier

Unauthenticated Remote Deletion Vulnerability in Plague News System 0.6 and Earlier

CVE-2005-2168 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

delete.php in Plague News System 0.6 and earlier allows remote unauthenticated attackers to delete news, comments, and shoutbox posts by modifying the id parameter.

Learn more about our Web Application Penetration Testing UK.