CVE-2007-5486

dotProject before 2.1 does not properly check privileges when invoking the Companies module, which allows remote attackers to access this module via a crafted URL. NOTE: some of these details are obtained from third party information.
Configurations

Configuration 1

cpe:2.3:a:dotproject:dotproject:*:*:*:*:*:*:*:*

Information

Published : 2007-10-16 11:17

Updated : 2017-07-29 01:33


NVD link : CVE-2007-5486

Mitre link : CVE-2007-5486

Products Affected
No products.
CWE