CVE-2007-5374

cp_memberedit.php in LightBlog 8.4.1.1 does not check for administrative credentials when processing an admin action, which allows remote authenticated users to increase the privileges of any account.
Configurations

Configuration 1

cpe:2.3:a:lightblog:lightblog:8.4.1.1:*:*:*:*:*:*:*

Information

Published : 2007-10-11 10:17

Updated : 2017-09-29 01:29


NVD link : CVE-2007-5374

Mitre link : CVE-2007-5374

Products Affected
No products.
CWE