From whats[@t]wekk.net Tue Apr 15 17:56:53 2008 Subject: Important security breach in the customer hub From: Albert =?ISO-8859-1?Q?Sellar=E8s?= To: contact@iweb.com Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="=-c9yNdoJ62glUVYtjlWy2" Message-Id: <1208275010.4988.72.camel@x61s.wekk.net> Mime-Version: 1.0 X-Mailer: Evolution 2.12.1 Date: Tue, 15 Apr 2008 17:56:53 +0200 X-Evolution-Format: text/plain X-Evolution-Account: 1196289184.22463.20@x61s X-Evolution-Transport: smtp://whats;auth=PLAIN@mail.wekk.net:2225/;use_ssl=when-possible X-Evolution-Fcc: imap://whats[@t]mail.wekk.net/INBOX/Sent X-Evolution-Source: imap://whats[@t]mail.wekk.net/ --=-c9yNdoJ62glUVYtjlWy2 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Hi, I have found an important security breach in the customer hub. The basic problem is that the sections of the customer hub, doesn't check that I have permision to see all client's information. For example if I log in to the customer hub with my account, I'm able to see all iweb contacts: https://hub.iweb.com/en/index.php?page=3DmesContact&contactId=3D2012 Then if I change the last url param (the id), I can see every contact in database. This problem lets me see a lot of information about other products, network traffic, etc, and lets me modify it. For example, delete a random contact: https://hub.iweb.com/en/index.php?page=3DmesContact&do=3Ddelete&contactId= =3D140 I want to publish this security breach at Bugtraq Mailing List, but I want to do that when iweb8 has solved the problem. Please, tell me something. --=20 Albert Sellar=C3=A8s GPG id: 0x13053FFE http://www.wekk.net whats_up@jabber.org=20 Membre de Catux.org http://catux.org =20 Linux User: 324456 Catalunya =20 --=-c9yNdoJ62glUVYtjlWy2 Content-Type: application/pgp-signature; name=signature.asc Content-Description: =?ISO-8859-1?Q?Aix=F2?= =?ISO-8859-1?Q?_=E9s?= una part d'un missatge, signada digitalment -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQBIBNBCK3eYPRMFP/4RArRAAKCR6+z4ayPT3kcUfYdwJiWTggLOWgCdHF9E c3uHjDiG5RNJWQk6dltnvwU= =Ri4c -----END PGP SIGNATURE----- --=-c9yNdoJ62glUVYtjlWy2--