CVE-2002-1427

The print_html_to_file function in edit.cgi for Easy Homepage Creator 1.0 does not check user credentials, which allows remote attackers to modify home pages of other users.

Date published : 2003-03-18

http://www.securityfocus.com/bid/5340

http://archives.neohapsis.com/archives/bugtraq/2002-07/0350.html