Fusion.SBX.Authentication.Bypass

description-logoDescription

Fusion SBX has an authentication-bypass vulnerability. A remote attacker could bypass security restrictions and execute arbitrary PHP code on the system, via parameters "is_logged" and " maxname2".

affected-products-logoAffected Products

Fusion SBX version 1.2 and prior.

Impact logoImpact

Bypass Security

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.
http://www.fusionphp.net/

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-09-26 13.458