CVE-2002-0995

2002-10-04T04:00:00
ID CVE-2002-0995
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:29:00

Description

login.php for PHPAuction allows remote attackers to gain privileges via a direct call to login.php with the action parameter set to "insert," which adds the provided username to the adminUsers table.