CVE-2006-2807

Published: Jun 5, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

ASPwebSoft Speedy Asp Discussion Forum allows remote attackers to change the password of any account via a modified account id and possibly arbitrary values of the name, email, country, password, and passwordre parameters to profileupdate.asp.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

speedyaspforum-user-account-manipulation(26811)

vdb-entry

x_refsource_XF

1037

third-party-advisory

x_refsource_SREASON

18170

vdb-entry

x_refsource_BID

20060527 Speedy ASP Forum(profileupdate.asp) User Pass Change Exploit

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2006-2807

Description

Affected Products

References