CVE-2007-2775

2007-05-21T19:30:00
ID CVE-2007-2775
Type cve
Reporter NVD
Modified 2017-10-10T21:32:22

Description

AlstraSoft Live Support 1.21 sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to obtain administrative access via a direct request to admin/managesettings.php.