Reported August 23, 2000 by n30
- CGI Script Center's Account Manager - all Lite and Pro versions, and possibly the Enterprise version
Administrative level access can be obtained to the product by overwriting the existing admistrator password by calling a specific URL and passing it the new password.
The following form (provided by the discoverer) will reset the password to whatever is entered. Note: the form is non-funtional in its current state since no specific URL has been defined in the "action' tag.
Discovered by n30