TUCoPS :: Web :: Apps :: b06-2595.htm

Nukedit Unauthorized Admin Add
- Nukedit Unauthorized Admin Add
- Nukedit Unauthorized Admin Add


[KAPDA::#46] - Nukedit Unauthorized Admin Add=0D
=0D
KAPDA New advisory=0D
=0D
Vulnerable product : Nukedit <= 4.9.6=0D
Vendor: http://www.nukedit.com=0D 
Vulnerability: Unauthorized Admin Add=0D
=0D
Date :=0D
--------------------=0D
Found : 2006/05/10=0D
Vendor Contacted : N/A=0D
Release Date : 2006/05/29=0D
=0D
About Nukedit :=0D
--------------------=0D
Nukedit is a Content Management System (CMS).=0D
=0D
Vulnerable page:=0D
--------------------=0D
utilities/register.asp=0D
=0D
PoC:=0D
--------------------=0D
HTML PoC : http://kapda.ir/attach-1661-nukedit.txt=0D 
Save this code as .htm and then execute.=0D
This exploit will create an admin acount .=0D
Then login with your email ! + your password .=0D
=0D
Solution:=0D
--------------------=0D
Update to new version of nukedit .=0D
=0D
Original Advisory:=0D
--------------------=0D
http://www.kapda.ir/advisory-337.html=0D 
=0D
Credit :=0D
--------------------=0D
FarhadKey of KAPDA=0D
farhadkey [at} kapda  net=0D
Kapda - Security Science Researchers Insitute of Iran=0D
http://www.KAPDA.ir

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH