admin/contest.php in Weekly Drawing Contest 0.0.1 allows remote attackers to bypass authentication, and insert new contest information into a database, via a direct POST request.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-03-22T23:00:00
Updated: 2018-10-16T14:57:01
Reserved: 2007-03-22T00:00:00
Link: CVE-2007-1603
JSON object: View
NVD Information
Status : Modified
Published: 2007-03-22T23:19:00.000
Modified: 2018-10-16T16:39:31.770
Link: CVE-2007-1603
JSON object: View
Redhat Information
No data.
CWE