EnthrallWeb Multiple Products Myprofile.ASP Arbitrary User Password Change Vulnerability
|
Bugtraq ID:
|
21739
|
|
Class:
|
Design Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Dec 26 2006 12:00AM
|
|
Updated:
|
Jan 02 2007 07:16PM
|
|
Credit:
|
ajann is credited with the discovery of this vulnerability.
|
|
Vulnerable:
|
Enthrallweb eNews 1.0
Enthrallweb eCoupons 1.0
Enthrallweb eClassifieds 1.0
|
|
|
|
Not Vulnerable:
|
|
|
