Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

pen-test logo Penetration Testing mailing list archives

FatWire CMS
From: "Alex Eden" <Alex.Eden () senet-int com>
Date: Tue, 9 Sep 2008 13:47:54 -0400
FatWire administrator's guide says,

"The DefaultReader user account has one ACL: Browser. Because many of the
Content Server database tables have the Browser ACL assigned to them, this
means that someone could log in to a Content Server database as DefaultReader
using Content Server Explorer and examine information about your system
(although they cannot write to any tables as this user)."


Can someone provide me with more info how can I log in " Content Server
database as DefaultReader using Content Server Explorer"?

I can log in somewhere into something on this particular server, but all I'm
getting is this message,

"Welcome DefaultReader
Username/password validated."

What default URLs I can try to verify it?

Thanks!




------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

  By Date           By Thread  

Current thread:
  • FatWire CMS Alex Eden (Sep 09)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]