Home / exploitsPDF  

Open Web Analytics 1.7.3 Remote Code Execution

Posted on 17 March 2023

Open Web Analytics (OWA) versions prior to 1.7.4 allow an unauthenticated remote attacker to obtain sensitive user information, which can be used to gain admin privileges by leveraging cache hashes.

 

TOP