Описание
An issue was discovered in MK-AUTH 19.01. There is authentication bypass in the web login functionality because guessable credentials to admin/executar_login.php result in admin access.
An issue was discovered in MK-AUTH 19.01. There is authentication bypass in the web login functionality because guessable credentials to admin/executar_login.php result in admin access.
Связанные уязвимости
CVSS3: 9.8
nvd
больше 5 лет назад
An issue was discovered in MK-AUTH 19.01. There is authentication bypass in the web login functionality because guessable credentials to admin/executar_login.php result in admin access.
CVSS3: 9.1
fstec
больше 5 лет назад
Уязвимость компонента admin/executar_login.php программного обеспечения для обесппечения аутентификации Mk-Auth, позволяющая нарушителю повысить свои привилегии