EnthrallWeb Multiple Products Myprofile.ASP Arbitrary User Password Change Vulnerability

Bugtraq ID: 21739
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: Dec 26 2006 12:00AM
Updated: Jan 02 2007 07:16PM
Credit: ajann is credited with the discovery of this vulnerability.
Vulnerable: Enthrallweb eNews 1.0
Enthrallweb eCoupons 1.0
Enthrallweb eClassifieds 1.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus