|
|
CVE Reference: CVE-2006-2737 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-2737 |
|
|
Description: utilities/register.asp in Nukedit 4.9.6 and earlier allows remote attackers to create new users as part of arbitrary groups, including the administrative group, via a modified groupid parameter when creating a user via the addDB action. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/26951 SREASON http://securityreason.com/securityalert/1013 SAID Secunia Advisory: SA20348 MISC http://www.kapda.ir/attach-1661-nukedit.txt http://www.kapda.ir/advisory-337.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/435311/100/0/threaded BID 18157 |
|
| Return to the previous page. |
