CVE-2007-2003
N/A
N/A
Summary
InoutMailingListManager 3.1 and earlier sends a Location redirect header but does not exit after an authorization check fails, which allows remote attackers to access certain restricted functionality, and upload and execute arbitrary PHP code, by ignoring the redirect.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://secunia.com/advisories/24842
- https://www.exploit-db.com/exploits/3702
- http://www.vupen.com/english/advisories/2007/1345
References
- http://secunia.com/advisories/24842
- https://www.exploit-db.com/exploits/3702
- http://www.vupen.com/english/advisories/2007/1345
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.