Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-1023. PoCs published by Weihan Leow.
AI-analyzed exploit summary The exploit describes an authentication bypass vulnerability in Alabanza's domain administration software, allowing unauthenticated users to modify, delete, or add domains and DNS records via crafted URLs. The issue stems from improper access control in the `nsManager.cgi` script.
Description
The Alabanza Control Panel does not require passwords to access administrative commands, which allows remote attackers to modify domain name information via the nsManager.cgi CGI program.
Exploits (1)
The exploit describes an authentication bypass vulnerability in Alabanza's domain administration software, allowing unauthenticated users to modify, delete, or add domains and DNS records via crafted URLs. The issue stems from improper access control in the `nsManager.cgi` script.