CVE-2006-4586
CVE-2006-4586
The admin panel in Tr Forum 2.0 accepts a username and password hash for authentication, which allows remote authenticated users to perform unauthorized actions, as demonstrated by modifying user settings via the id parameter to /membres/modif_profil.php, and changing a password via /membres/change_mdp.php. NOTE: this can be leveraged with other Tr Forum vulnerabilities to allow unauthenticated attackers to gain privileges.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/2297unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://acid-root.new.fr/poc/10060903.txthttp://secunia.com/advisories/21754http://securityreason.com/securityalert/1508http://securitytracker.com/id?1016788https://exchange.xforce.ibmcloud.com/vulnerabilities/28756https://www.exploit-db.com/exploits/2297http://www.osvdb.org/28542http://www.securityfocus.com/archive/1/445079/100/0/threadedhttp://www.securityfocus.com/bid/19834http://www.vupen.com/english/advisories/2006/3452