NuytsTech Security

CVE-2006-7145

by ·

edit_user.php in Call Center Software 0.93 and earlier allows remote attackers to obtain sensitive information such as account passwords via a modified user_id parameter.

Date published : 2007-03-07

http://www.securityfocus.com/bid/20474

http://www.securityfocus.com/archive/1/448423/100/0/threaded

Tags: