CVE-2004-2733

Published: Oct 9, 2007

Modified: Aug 8, 2024

PUBLISHED

Description

Web Wiz Forums 7.7a uses invalid logic to determine user privileges, which allows remote attackers to (1) block arbitrary IP addresses via pop_up_ip_blocking.asp or (2) modify topics via pop_up_topic_admin.asp.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

1010012

vdb-entry

x_refsource_SECTRACK

5751

vdb-entry

x_refsource_OSVDB

10255

vdb-entry

x_refsource_BID

webwizforums-popuptopicadmin-modify(16030)

vdb-entry

x_refsource_XF

11525

third-party-advisory

x_refsource_SECUNIA

5750

vdb-entry

x_refsource_OSVDB

webwizforums-unauth-ip-blocking(16031)

vdb-entry

x_refsource_XF

20040430 Critical bug in Web Wiz Forum

mailing-list

x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2004-2733

Description

Affected Products

References