mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-08 22:17:19 +00:00
768 B
768 B
CVE-2011-2155
Description
Login.aspx in the SmarterTools SmarterStats 6.0 web server generates a ctl00$MPH$txtPassword password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass authentication by leveraging an unattended workstation.
POC
Reference
Github
No PoCs found on GitHub currently.