Back to search
CVE-2007-2715
Published: May 16, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Admin/users.php in Snaps! Gallery 1.4.4 allows remote attackers to change arbitrary usernames and passwords via the (1) username, or the (2) password and password2 parameters in an edit action.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2007-1781
vdb-entry
x_refsource_VUPEN
23940
vdb-entry
x_refsource_BID
snaps-users-unauthorized-access(34300)
vdb-entry
x_refsource_XF
http://0day.2600.ir/exploits/3900
x_refsource_MISC
3900
exploit
x_refsource_EXPLOIT-DB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now