← back
CVE-2007-2715

CVE-2007-2715

EPSS 10.2%
Admin/users.php in Snaps! Gallery 1.4.4 allows remote attackers to change arbitrary usernames and passwords via the (1) username, or the (2) password and password2 parameters in an edit action.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/3900unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://0day.2600.ir/exploits/3900https://exchange.xforce.ibmcloud.com/vulnerabilities/34300https://www.exploit-db.com/exploits/3900http://www.securityfocus.com/bid/23940http://www.vupen.com/english/advisories/2007/1781