CVE-2008-4167

2008-09-22T18:34:00
ID CVE-2008-4167
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:32:00

Description

useradmin.php in Easy Photo Gallery (aka Ezphotogallery) 2.1 does not require administrative authentication, which allows remote attackers to (1) add or (2) remove an Administrator account.