The dologin function in guestbook.php in KvGuestbook 1.0 Beta allows remote attackers to gain administrative privileges, probably via modified $mysql['pass'] and $gbpass variables.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-02-14T11:00:00
Updated: 2018-10-16T14:57:01
Reserved: 2007-02-13T00:00:00
Link: CVE-2007-0926
JSON object: View
NVD Information
Status : Modified
Published: 2007-02-14T11:28:00.000
Modified: 2018-10-16T16:35:31.123
Link: CVE-2007-0926
JSON object: View
Redhat Information
No data.
CWE