CVE-2007-4143

user.php in the Billing Control Panel in phpCoupon allows remote authenticated users to obtain Premium Member status, and possibly acquire free coupons, via a modified URL containing a certain billing parameter and REQ=auth, status=success, and custom=upgrade substrings, possibly related to PayPal transactions.
Configurations

Configuration 1

cpe:2.3:a:phpcoupon:phpcoupon:*:*:*:*:*:*:*:*

Information

Published : 2007-08-03 08:17

Updated : 2018-10-15 09:33


NVD link : CVE-2007-4143

Mitre link : CVE-2007-4143

Products Affected
No products.