/*
*
*
* Kali's PHP Tagboard Version 1.6 Remote Administration Bypass
* Bug discovered by Mirko Calabrese
* mirkocalabrese@gmail.com
* http://www.mirkocalabrese.com/
* 
*
* Affected Software: Kali's PHP Tagboard
* Board Site: http://www.xentrik.net/
* Description: A Guest User can go in the Administration Panel without login
* Google Dork: allintitle:"Kali's PHP Tagboard"
*
* 
* Vulnerable Path: http://www.site.com/path/admin/
*
*
*/

# mirkocalabrese.com [18-12-2008]