RSS   Vulnerabilities for 'Mypicgallery'   RSS

2008-05-20
 
CVE-2008-2347

CWE-287
 

 
MyPicGallery 1.0 allows remote attackers to bypass application authentication and gain administrative access by setting the userID parameter to "admin" in a direct request to admin/addUser.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top