Francisco Alisson <email@example.com> is credited with the discovery of this vulnerability.
Mafia Mafia .4 Beta
Mafia is prone to an authentication bypass vulnerability regarding the administrator functions. This issue is due to a failure in the application to secure access to the administrator functions.
This issue permits an attacker to gain administrator privileges to the affected application. The available administrator functions include editing of blog comments, uploading of images, editing information about pictures and access to blog configuration files.
No exploit is required.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: firstname.lastname@example.org <mailto:email@example.com>.