Back to search
CVE-2007-0760
Published: Feb 6, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
EQdkp 1.3.1 and earlier authenticates administrative requests by verifying that the HTTP Referer header specifies an admin/ URL, which allows remote attackers to read or modify account names and passwords via a spoofed Referer.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
eqdkp-backup-information-disclosure(32152)
vdb-entry
x_refsource_XF
24038
third-party-advisory
x_refsource_SECUNIA
3252
exploit
x_refsource_EXPLOIT-DB
33112
vdb-entry
x_refsource_OSVDB
20805
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now