|
|
CVE Reference: CVE-2006-4427 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-4427 |
|
|
Description: index.php in eFiction before 2.0.7 allows remote attackers to bypass authentication and gain privileges by setting the (1) adminloggedin, (2) loggedin, and (3) level parameters to "1". |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/28595 SAID Secunia Advisory: SA21625 OSVDB 28237 MISC http://milw0rm.com/exploits/2255 CONFIRM http://efiction.org/forums/index.php?topic=3698 BID 19717 |
|
| Return to the previous page. |
