A serious flaw has been discovered in the Spiceworks application, which creates an admin account for anyone logging in using their Facebook or LinkedIn details.
An admin with malicious intentions could change or delete passwords and cause havoc across the network. The Spiceworks application allows a network of 6 million IT professionals to exchange product reviews and publish how-tos.
Spiceworks application vulnerability disclosed
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.