This is a writeup describing an authentication bypass vulnerability in OsCommerce/Creloaded's tell_a_friend.php. By providing a valid product ID, an unauthenticated user can bypass restrictions and send unsolicited emails through the system.
Classification
Writeup 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target:OsCommerce/Creloaded (version not specified)
No auth needed
Prerequisites:Access to the /tell_a_friend.php endpoint · Valid product ID