CVE-2006-5777

Name of the Vulnerable Software and Affected Versions: Creasito E-Commerce Content Manager version 1.3.08

Description: The issue allows remote attackers to bypass authentication and perform privileged functions. This can be achieved by providing a non-empty finame parameter to various API endpoints, including "addnewcont.php", "adminpassw.php", "amministrazione.php", "artins.php", "bgcolor.php", "cancartcat.php", "canccat.php", "cancelart.php", "cancontsit.php", "chanpassamm.php", "dele.php", "delecat.php", "delecont.php", "emailall.php", "gestflashtempl.php", "gestmagart.php", "gestmagaz.php", "gestpre.php", "input.php", "input3.php", "insnucat.php", "instempflash.php", "mailfc.php", "modfdati.php", "rescont4.php", "ricordo1.php", "ricordo4.php", "tabcatalg.php", "tabcont.php", "tabcont3.php", "tabstile.php", "tabstile3.php", "testimmg.php", and "update.php" in the "admin/" directory.

Recommendations: For Creasito E-Commerce Content Manager version 1.3.08, consider disabling access to the listed API endpoints in the "admin/" directory until a patch is available. Restrict the use of the finame parameter in these endpoints to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.