CVE-2007-5988 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-5988
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5988

Description: blocks/shoutbox_block.php in BtiTracker 1.4.4 does not verify user accounts, which allows remote attackers to post shoutbox entries as arbitrary users via a modified nick field.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/38417 SAID Secunia Advisory: SA27550 OSVDB 42216 CONFIRM http://sourceforge.net/tracker/index.php?func=detail&aid=1764809&group_id=146822&atid=766508 http://sourceforge.net/project/shownotes.php?release_id=552477 BID 26551

Return to the previous page.